VPN help

[ukslice]

My home users, using works laptops, are deliberately avoiding starting up VPN. They want the faster speed on the internet or want to access sites that we block on the proxy. This is especially problematic with our 3G users as they don't have the protection of a home router/firewall either. Does anyone have any experience of setting up a system whereby a laptop can be setup so that internet only works when VPN is up. Obviously VPN requires internet to be up so this could be a problem

 

[HungryHouse]

You could auto-launch the VPN client upon startup...run a script to do this if allowed. Then do not allow split tunneling from the client side (this is often a setting on your VPN Gateway/Termination device at the central end, but in some, this must be preconfigured on the client...depends on the OEM) once connected to work central.
Do not give the user the ability to terminate/disconnect from the tunnel...disable admin access to the PC/OS.
Not sure of your VPN devices/clients involved here, so its hard to give specific advice, but this is the general idea.

I hope this helps
-HH

Real trouble call:
Customer: "I have a huge problem. A friend has put a screensaver on my computer, but every time I move the mouse, it disappears!"

 

[ukslice]

Thanks for the response. Sorry, I should have said, it was Cisco VPN client.

We wouldnt want vpn kicking in all the time.

Ideally internet just wouldn't work unless you are connected at our office or have VPN connected when out of the office but that would probably involve some sort of policy. VPN wouldnt work if internet didn't so how to get it to recognise that it is off site and to only allow internet to run enough to allow vpn but not browse.