Skip to the content

Kansas State University

Virtual Private Network FAQs

frequently asked questions about K-State's VPN

  1. What is a VPN?
  2. Why should I use the VPN?
  3. What is the difference between the full and split VPN tunnel options?
  4. Can I use the VPN client on campus or through K-State's dial-in?
  5. When I type my password, is it secure?
  6. Does the VPN protect my computer from viruses?
  7. Should I also use SSH and other "higher layer" encrypted services even if I am using the VPN?
  8. What username and password do I use?
  9. What operating systems does the Cisco VPN client require?

1. What is a VPN?

It is a set of technologies that allow you to build secure "virtual" paths between hosts on insecure networks. The particular type of VPN Information Technology Services is deploying is commonly known as a remote access or tunnel VPN service. The K-State VPN service allows you to establish an encrypted tunnel between your computer and K-State's network via the Internet. The primary purpose of the encrypted tunnel is to secure (encrypt) your data so that it can be sent across public (insecure) networks without fear of the data being viewed and/or tampered with by unauthorized people.

2. Why should I use the VPN?

By connecting to K-State's VPN, you assure that the data you transmit or receive will be secure between your computer and K-State. Traffic between the VPN and the computer you are communicating with will not be encrypted, unless you are using SSL-enabled applications. Furthermore, it allows you to gain access to resources that are restricted based on source address 129.130.x.x. It also allows access to services such as Samba that are otherwise restricted by the border routers.

3. What is the difference between the full and split VPN tunnel options?

When using a split tunnel your traffic to campus will be encrypted and secured between your computer and the VPN. When using a full tunnel all of your network traffic will be routed through an encrypted connection to the VPN and then from the VPN to its intended destination. With both options traffic between the VPN and the computer you are communicating with will not be encrypted, unless you are using SSL-enabled applications.

  • .KStateVPN (split tunnel) should be used when you need to connect to campus resources that are restricted based on source address 129.130.x.x. Split tunnel use may also be required for both on and off campus users for certain sensitive systems.
  • .KStateVPNFull_Tunnel (full tunnel) is for use when you are accessing sensitive systems and websites, including K-State sites, financial sites, and others while on an untrusted network. Specific examples of untrusted networks include hotel wireless connections, airport wireless connections, and any unsecured wireless network. Use of the full tunnel will result in a decrease in performance, as such it is not recommended for extended use, particularly in a home setting.

4. Can I use the VPN client on campus or through K-State's dial-in?

Yes.

5. When I type my password, is it secure?

Yes. The password is encrypted using SSL.

6. Does the VPN protect my computer from viruses?

No. A VPN provides security by encrypting and decrypting data that passes through a VPN connection. It does not offer protection from viruses or other malware. Windows and Mac computers are required to run working antivirus software and up-to-date virus definition files.

7. Should I also use SSH and other "higher layer" encrypted services even if I am using the VPN?

Yes. SSH provides end-to-end encryption, whereas the VPN only provides encryption from your client up to the VPN itself, which is located in the K-State core network. If you are using non-SSL-enabled applications, or websites, data between the VPN and the computer you are communicating with will not be encrypted.

8. What username and password do I use?

When prompted to enter a username and password, you will need to enter your eID and password.

9. What operating system do I need for the Cisco VPN client?

  • Microsoft Windows XP 32-bit (x86) and 64-bit (x64)
  • Windows Vista 32-bit (x86) and 64-bit (x64), including Service Pack 1 and 2 (SP1/SP2)
  • Windows 7 32-bit (x86) and 64-bit (x64)
  • Mac OS X 10.5 and higher
  • Linux Intel (2.6.x kernel)
  • iOS 4 or higher