27JAN25

• We discussed the static vpn IP assignment cleanup including ACLs and/or firewalls. The example that brought this up was Bruce LaBuda’s static IP that should be cleaned up because the ACL counter for Bruce is increasing, and he is retired. 
• We need help identifying who belongs to the IP’s.
  • SEO has the list per Mark Tinberg for SEO managed.
  • Who has a view into access.services.wisc.edu to assist with figuring out what can be cleaned up. 
• We discussed having this added to off boarding personnel.
• We discussed “Last Used” with date of 1/1/1900 and N/A meaning never logged in or imported from old system so they could be cleaned up.
  • Mark Tinberg believes that SEO is removing static IP’s after a year of not being used.
• We discussed that we need an audit that will find IP’s that need to be cleaned up.
• Scott let us know that we need to have a conversation with WAMS to let them know what we need. Ask WAMS for a report so cleanup can be done.
• Scott said a user can delete themselves and then no clean up would happen due to not knowing they deleted their entry.
• We would have to see a release report so clean up can be done.
• We discussed removing static vpn as a service and instead use jump boxes or another method.
• We discussed taking this to upper management to get input.
• Dennis is going to add this to the NAG agenda to inform members.
• Dennis will take this to upper management.
• Mark Tinberg is sending an email to WAMS.
• Eric put a spreadsheet (VPNStaticIPAdress) in the chat so we can get counts.
• Review on 10FEB25.

10FEB25

• We discussed the last login information to verify if it is working.
• Dennis brought this to the NAG meeting and some discussion.
• Dennis will add it as a line item for next NAG meeting.
• We discussed coming up with a script to help server admins cleanup their IP tables.
• Josh said he could reach out to SE to give them a heads up that this is coming since they will have a lot of this cleanup to do.
• Nick will ask Terry to see what he has been doing with IP table information.
• Dennis brought this to Pat to start the conversation.
• Next steps are to ask SE and come up with a sample script to clean up IP’s in the notification that is sent when the static IP is requested to be cleaned up.
• We discussed sending the entire list of what needs to be cleaned up to all admins in WiscNIC.
• We discussed creating a tool to upload IP tables to check against the list of IP’s that need to be cleaned up.
• We discussed taking this to Jeff Savoy to let him know what is happening.
• Dennis said he would take this forward to Jeff Savoy/Cybersecurity.
• We discussed asking SE about how to meaningfully get this out to campus and get information about what needs to be cleaned up on servers (Linux, Windows…). Dennis will take this to Pat and ask Pat to take it to Jeff Savoy. Review in 2 weeks.

24FEB25

Dennis mentioned this to Pat and does not know if Pat took this to Jeff Savoy. Review in 2 weeks.

10MAR25

Dennis will follow up with Jeff Savoy to get a reply. Review in a month.

14APR25

Dennis did not have a chance to follow up with Jeff Savoy. Dennis will follow up with Jeff Savoy to get a reply. Review in a month.

02JUN25

Dennis did not have a chance to follow up with Jeff Savoy. Dennis will follow up with Jeff Savoy to get a reply. Review in 2 months.