This document provides policies and guidelines for the responsible management and administration of the University of North Carolina Asheville’s communications networks. This is not a comprehensive document covering all aspects of responsible network management. The provisions that follow are intended to establish a framework of principles, guidelines and operational procedures that ensure the effective and efficient management of the campus communications networks consistent with the mission and goals of the university. Information Technology Services (ITS) is charged by the university with the efficient and effective management of the campus communications networks.
The campus communications networks are mission critical resources that are utilized by all members of the campus community. It is essential, therefore, that these resources be managed effectively to ensure maximum availability, accessibility, and operational efficiency.
A. Security and Encryption
1. ITS has the authority and responsibility to monitor the campus communications networks to ensure security. Any form of software that explores, “sniffs”, or probes the network for any reason is strictly prohibited. ITS tests and investigates all actions or conditions that pose risks to network security and will take corrective and/or protective measures as necessary to ensure the continued proper function of the campus communications networks.
2. ITS actively monitors the network for intrusion. Any entity identified as a potential unfriendly host is denied access to the campus network immediately and reported to the proper authorities for further investigation and subsequent action.
3. ITS manages and configures the campus firewall in accordance with the guidelines that are contained within this policy.
4. The guest wireless network is available for parents, vendors and other guests of UNC Asheville that are on-campus to conduct business related to the university and is only to be utilized in strict adherence to all university policies. The guest wireless network cannot access any non-public UNC Asheville resources.
B. Network Hardware/Software (Routers and Switches)
1. The physical network standard on campus is exclusively Ethernet, IEEE 802.x. The wireless Ethernet strictly adheres to the 802.11x and 802.11g standard.
2. The connection of any network device to the campus network without the prior knowledge and expressed permission of ITS is prohibited.
3. The standardization of manufacturer for networking technology decreases integration problems and increases our ability to provide a flexible, robust and integrated network providing optimal network connectivity and reliability. Standardization also provides for a seamless integration of data, voice and video, and heightens quality of service and network resilience. The university has standardized on hardware and the inherent software that operates this hardware for both the wired and wireless networks. These standards are available from ITS.
4. It is important to use enterprise-wide network protocols to allow integration, reliability and help maintain simplicity in a large complex network as the enterprise continues to evolve. Although other protocols are not strictly prohibited, the primary protocol supported on the university communications networks is TCP/IP.
C. Disaster Recovery
ITS is responsible for maintaining, testing and continuously improving a plan for recovery of the communications networks in the event of a disaster. Details can be found in the ITS Disaster Recovery Plan.
D. Device Registration and Address Allocation
1. All hosts (computers) on the UNC Asheville network must be registered with an accurate and unique IP address assigned by ITS. If the IP addresses of two or more hosts are not unique, the machines will not function properly, and they may disrupt campus network services.
2. Faculty and staff needing to connect a new device to the campus network should contact the ITS Help Desk for assistance.
3. Users may request a static address allocation by contacting the ITS Help Desk. Requests for static addresses will be reviewed and acted upon as appropriate in the best interests of the campus network and the user community.
E. Network Guidelines
The campus communications networks are a limited resource that exists to facilitate the goals and mission of the university. Users may not infringe or encroach on the availability or use of the campus network by others. Examples of activities not allowed include (but are not limited to):
1. Using an IP address that has not been assigned or approved by ITS.
2. Allowing a node or system on the network to become “open” to the extent that it is a target for hackers and a possible launching pad for an internal attack on the campus network or the Internet in general.
3. Monitoring or “sniffing” data on the network.
4. Flooding the network, either intentionally or unintentionally.
5. Running a commercial or for profit service on the network.
6. Registering a system without using the unca.edu domain.
7. Establishing, enabling, or providing network services that interfere with the normal operation of the campus communications networks or users of the network, or that create security risk and exposure.
8. Installing Wireless Access Points.
9. Installing Firewalls other than software firewalls.
10. Installing Ethernet switches or routers.
Applies to UNC Asheville faculty, staff, students, volunteers, interns, and guests requiring access to electronic resources.
IV. Violations of Policy
Intentional or knowing violations of this policy may constitute misconduct and accordingly employees are subject to disciplinary action, up to and including suspension without pay and dismissal, in accordance with the pertinent employment policies for SHRA, EPA non-faculty, and faculty.