Q

Policy for using split tunnels

I am doing some research on the existence of a policy regarding the use of split tunnels. Does the Department of Defense (DoD) or any other federal agency have a policy prohibiting the use of split tunnels?

Despite diligent searching, I have not been able to find any definitive federal policy prohibiting or permitting the use of split tunnels. Now that I have written this, I'm sure lots of people will write in to SearchSecurity.com to tell us where to find the policy.

From a DoD perspective, the general policy is that only DoD issued computers can even connect to a DoD network whether directly or via dialup VPN. This is done so that the configuration of those computers can be controlled and locked down. Users are not allowed to load their own software. VPN software that I have encountered is set up to disable split tunneling, forcing any Internet connection to go out via the DoD firewalls.

If you think about it, this policy makes sense. Do you want your employees to load their own software on their company-owned computers? Do you want them accessing the Internet without benefit of a firewall? If you allow personally-owned computers or computers with split-tunneling to access your network, that is exactly what you are doing. You may very well be opening up your network to problems that you thought you were avoiding.


For more info on this topic, visit these SearchSecurity.com resources:
  • Security Policy Tip Index
  • Ask the Expert: VPNs and split tunneling
  • SearchSecurity.com Glossary: Tunneling
  • This was first published in October 2003

    Dig deeper on SSL and TLS VPN Security

    Pro+

    Features

    Enjoy the benefits of Pro+ membership, learn more and join.

    Have a question for an expert?

    Please add a title for your question

    Get answers from a TechTarget expert on whatever's puzzling you.

    You will be able to add details on the next page.

    0 comments

    Oldest 

    Forgot Password?

    No problem! Submit your e-mail address below. We'll send you an email containing your password.

    Your password has been sent to:

    -ADS BY GOOGLE

    SearchCloudSecurity

    SearchNetworking

    SearchCIO

    SearchConsumerization

    SearchEnterpriseDesktop

    SearchCloudComputing

    ComputerWeekly

    Close