Frequently Asked Questions - Security :: Campus Border Firewall

Printer-friendly version

No, on-campus computing functions normally. Only traffic that originates outside the campus is affected by this approach.

Printer-friendly version

Not unless you attempt to access HSU resources from off-campus that you are not authorized to access.

Printer-friendly version

You'll need to use the HSU Virtual Private Network (VPN) to connect directly to your on-campus computer. If you only need to access specific files stored on your on-campus computer, you don't need to use the VPN; you'll find it easier to access those files remotely if you store them in your Network Folder.

Printer-friendly version

HSU has identified all computers and services that should be legitimately available from off campus. This information is used to create “pinholes” in the firewall that enable access to a specific service and/or computing resource but limit access to non-essential services that may be vulnerable to attack.

Printer-friendly version

A pinhole is a configuration setting in the firewall that allows access to specific services running on a campus computer. For example, for users on the Internet to access a campus web page, a pinhole must be configured on the firewall to allow requests to the web services on the computer hosting the web site. This service description is usually called a port. Web services commonly use Port:80.

If a particular computer - we'll call it DeptWebServer1 - needs to display a departmental web page on the Internet, the departmental IT Coordinator would request that a pinhole be configured on the firewall to allow DeptWebServer1 to be accessed via port 80. This allows anyone to access the department web page over the Internet but not to access other services on the HSU network. By limiting access to just the services needed to meet a web user's requirements, the risk of attacks from the Internet reaching vulnerable computers on the HSU network is greatly reduced.

feedback