Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
A
A
admin4eg2010-11-15 18:17:08
openvpn
admin4eg, 2010-11-15 18:17:08

A network of branches for a state enterprise with confidential data

Misters, I want to connect a network of branches of gos_struktury for simplification of synchronization of bases.
For them, I am a third-party organization, they operate with the Personal Data of an ENTIRE region.

All data is synchronized either through open channels of the Internet, or by a specially trained person with a flash drive, which does not fit into the framework of the Law “On Personal Data”.

The management sees this problem, and wants me to help them solve it, the local admin is against this, motivating me by the lack of the necessary licenses for this type of work.

The question is, what licenses do I need (and do I need them at all) to organize an OpenVPN network for a government structure.

Is it necessary to encrypt this network according to GOST, as I understand it, OpenSSL is not at all suitable, version 1.0.0, which is not yet available, may be more precise, but these are details.

who knows I will be very grateful.

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

4 answer(s)
Report
D
digreen, 2010-11-15
@digreen

According to GOST, it is mandatory for state institutions, as far as I know.
State. admin is probably right. And you, in general, who are you that the state office asks you to solve their problems with cryptography? -) Even interesting. Tag "rollback" for a reason?

Report
S
Sergey, 2010-11-16
@bondbig

You either need to take new checkpoint UTMs with GOST support, or support domestic manufacturers like Amicon with their FPSU-ip . Well, or RVPN modules for 38/28th tsisok.

Report
A
Akr0n, 2010-11-16
@Akr0n

The main thing in such a case is a piece of paper (certificate). If you have little money, then just buy the cheapest solution that is with FSTEC and FSB certificates. By the way, the formal “man with a flash drive” is a completely normal solution that allows you to forget about channel encryption, which means saving a lot.

Similar questions
M
maks-andreev2016-10-07 15:07:25
Mikrotik's local network is unavailable. What could be the reason? 2Reply
F
FinEkat2019-03-15 22:22:30
Setting up an OpenVPN server with two gateways? 2Reply
B
bernex2016-10-22 10:58:23
How to set up a VPN to save traffic? 1Reply
A
Auaal2016-11-01 13:53:01
Trouble running openvpn client under linux from nobody? 1Reply
V
Valery Sotnikov2014-11-04 02:38:38
How to give a subdomain completely to VPN clients? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question