Hi,

The AV, firewall and malware scanners have been dealt with. Yes, yes and yes again

The general use of a VPN is to permit secure connection to a secure environment through an insecure environment. Or to allow connection to a secure environment from within another secure environment.

I have worked on client sites where I need to access my HO systems without using the client's network other than as a carrier, we use VPN for that. As stated already, you need an identified target at the other end.

Remember these "tunnels" are a bit like Stargate SG1.............stuff might be safe whilst in the tunnel, but the machines at either end are usually connected to the general network at their end. The main idea is to protect confidential data IN TRANSIT.

For example, say I log in to the client's network (I have to to use the broadband link) I then activate the VPN link, type in my userID and password, the part of the password from my RSA keyfob (a random number that changes every 60 seconds, and is unique to me) hit enter and make the connection to head office.

I pick up a virus there which securely travels down the VPN and infects my local box, that is connected to the client's network...............infecting customers is generally regarded as "bad manners" to say the least

Please let me warn you that I am no great expert on these matters but I have always regarded strong encryption to be a somewhat different issue. That is what protects the data when it pops out the other end of the tunnel and onto the general network.

just a thought