VPN Overview
This article is an overview for faculty and staff when using the campus Virtual Private Network (VPN) service GlobalProtect.
It is a software agent that that extends the protection of a corporate perimeter to remote user laptops thereby applying all the same policies and protections to remote users.
Selecting GlobalProtect - Full Tunnel (gpft) results in ALL of your network traffic being routed through the VPN tunnel.
- This includes traffic to the campus and the Internet.
- This include emails, browsers, etc., regardless of where the data is going to or coming from.
This is the most secure way of keeping your data secure and preventing others from listening to your traffic.
Reasons to use GlobalProtect - Full Tunnel (gpft):
- It is recommended that you select GlobalProtect - Full Tunnel anytime you are connected to an “Untrusted” (i.e.) public network.
Examples of "Untrusted" networks include, but are not limited to airports, restaurants, hotels, traveling overseas, etc.
Selecting GlobalProtect - Split Tunnel (gpst) results in Only of network traffic to .fullerton being routed through the VPN tunnel.
- All other traffic is routed directly to the Internet and does not pass through the VPN tunnel.
Reasons to use GlobalProtect - Split Tunnel (gpst):
- Use GlobalProtect - Split Tunnel when you are connected to a “Trusted” network and you need access to local campus resources (ex: printers, file shares, etc).
Examples of "Trusted" networks include, but are not limited to, your home network, campus networks, etc.
Remember to access any campus data you will need to have that data encrypted.
Windows |
Mac |
Android |
IOS |
Chrome |
---|---|---|---|---|
|
|
|
|
|
- DUO - a 2-Factor authentication tool.
- GlobalProtect - the VPN agent. This must be installed on local system.
For this purpose of this document we will define local system and remote system as the following:
- a local system is typically a system (computer) controlling the connection.
- i.e. your personal (home) workstation, mobile device, or browser can have the GlobalProtect VPN agent installed on it
- a remote system is typically a system (computer) being accessed.
- i.e. your office workstation or campus resources are items that can be accessed through the GlobalProtect VPN agent
- DUO - a 2-Factor authentication tool.
- Remote Desktop - must be enabled on the remote system (Windows) in your office;
- GlobalProtect - the VPN agent. This must be installed on your (local) client system; and
- Remote Desktop app - must be installed on the local system (Windows or Mac).
For this purpose of this document we will define local system and remote system as the following:
- a local system is typically a system (computer) controlling the connection.
- i.e. your personal (home) workstation, mobile device, or browser can have the GlobalProtect VPN agent installed on it
- a remote system is typically a system (computer) being accessed.
- i.e. your office workstation or campus resources are items that can be accessed through the GlobalProtect VPN agent
Currently, connections for the Remote Desktop application are PC to PC and Mac to PC.
Remote Desktop is NOT SUPPORTED for Mac to Mac or PC to Mac!
Use the campus VPN to remotely access campus applications, resources, websites and servers which require a secure connection.
- DUO - a 2-Factor authentication tool. This must be installed on your mobile device; and
- GlobalProtect - the VPN agent. This must be installed on the local system.
For this purpose of this document we will define local system and remote system as the following:
- a local system is typically a system (computer) controlling the connection.
- i.e. your personal (home) workstation, mobile device, or browser can have the GlobalProtect VPN agent installed on it
- a remote system is typically a system (computer) being accessed.
- i.e. your office workstation or campus resources are items that can be accessed through the GlobalProtect VPN agent
Any additional information or resources needed to access your desired connect will need to be provided to you by the owner of the application or resource.
It depends. Based on the level of secure data you access and your location,
- NO, VPN access is not required if you are on campus.
-
YES, VPN access is required if you are off-campus trying to access:
- secure campus resources
- a campus workstation
No. Contact the Help Desk at [email protected] or 657-278-7777 to obtain a "keychain fob" that you can use with Duo to access VPN.
Need More Help?
Contact the IT Help Desk at [email protected] or 657-278-7777 for additional assistance.