Home » Questions » Computers [ Ask a new question ]

Work from home VPN not safe on home router?

Work from home VPN not safe on home router?

I'm getting set up to work from home and I have an existing cable internet connection with a router connected to the cable modem for my home computers. My work's IT dept says it's their policy not to connect work at home computers to a router; they must have their own stand alone connection and modem. I thought VPN was secure no matter if directly connected or connected to a router. They are suggesting I add a "business connection" separately for my work at home computer, but this is about 90.00 monthly and I've already heard my dept director is balking at reimbursing that amount of money a month. What gives?

Asked by: Guest | Views: 89
Total answers/comments: 4
Guest [Entry]

"If you have your computer behind a router connected to the modem then the VPN traffic goes through your home network and router, then out the modem and then to the telecos dslam somewhere, then god knows where through the bowels of several ISP's networks until it gets to your work.

The point is if you eliminate that first hop inside your network, what have you really acheived? The traffic still goes through the public internet where anything could be happening.

A VPN is a way of creating a secure encrypted ""tunnel"" between two trusted points, over an untrusted network. Its your computer that does the encryption, not the router so if an attacker could somehow intercept the traffic on your home network then it wouldn't do them any good anyway."
Guest [Entry]

"The concern is probably the possibility of your home network affecting the corporate LAN (propagating a virus, for example) you're connecting to. They probably want a point-to-point between your work at home computer and no connection from it to your home LAN.

It's you vs. them. We had a similar policy at a company I used to work for and the common sense prevailed (ie. somebody they trusted explained it to them) and they lifted the silly restriction."
Guest [Entry]

If the VPN is initiated from your machine, I do not see how having a different connection is any safer. Obviously it could stop man in the middle attacks / interception of VPN credentials if there is only one machine connected to the router/modem, however these are rare and I can't imagine it being a issue for many.
Guest [Entry]

Another one of my coworkes says what they did is called the cable company and requested a "static IP address" for the work computer so as to satisfy requirements. I'm thinking that this will not really matter, security wise. I'm just wandering if they will know that I'm on a router instead of straight thru a modem.