If you visit the library in South Jordan Utah, you'll be pleased to find that there's free wi-fi. You might be less pleased to know that they've blocked the ports for IPSEC--making it impossible to use a VPN based on that protocol. The library's answer to queries about this is that "enabling IPSEC would lead to security problems. A hacker who knows what their doing could open up security liabilities for the library." This information from the librarian at the desk--who gets that question often enough to know the answer.

Of course this ignores the security vulnerabilities that you avail yourself to without a VPN. What boggles the mind is that this implies that the wi-fi is somehow behind their firewall or something.

Can anyone elucidate how having IPSEC ports open on a properly set up public wi-fi network that's isolated from the internal network of the library exposes them to security problems?