Multiple changes to the structure of enterprise workforces mean that many are moving away from the traditional model of a single site where all the employees are permanently based. Remote working, ever-more mobile salesforces and dispersal over multiple sites are all requiring network and IT structures to change and adapt.
Mobile and interconnect solutions must be implemented to support the use of laptops and smartphones. To be effective, remote workers must be able to access all types of information, even when it is confidential. Secure access is therefore an absolute requirement.
NETASQ firewalls support VPN SSL. A simple browser allows users to access the network from any computer. Unlike a dedicated VPN SSL solution located within a DMZ, integration within the NETASQ firewall guarantees that VPN traffic is subject to security analysis.
Both technologies are complementary and the administrator can define profiles on a per-user basis to ensure access is restricted only to authorized personnel. Combining both VPN technologies allows the administrator to choose the most appropriate technology to manage both mobility within the enterprise and interconnectivity between sites.
Integration of VPN functions within the firewall improves network security by guaranteeing that traffic flows from remote workers are subjected to intrusion prevention analysis.
Organizations which adopt a remote working policy need to ensure service continuity, whilst still protecting network resources. Access needs to be managed according to the company’s security policies to prevent malware from being introduced into the network through unsecured channels. It has long been a requirement to allow employees flexible remote access to the company network. This practice is now a fact of life, however mobility is also viewed as a threat by network managers. Geographically distributed enterprises with a number of branch offices also need to offer secure access and share centrally-held contents and resources. However, security must not affect network performance, which is vital to customer.
The IPSec standard delivers real interoperability and further benefits. As an Internet Engineering Task Force (IETF) standard it has been widely adopted by vendors. An independent standard offers unparallelled flexibility. Users may choose the encryption and authentication algorithms that are best suited to their requirements and a key length compliant with local legislation and appropriate to their need for confidentiality.
NETASQ’s VPN client enables secure remote connections via VPN IPSec tunnels to be established. Installed on remote devices, the client works in association with the VPN IPSec gateway functions integral to the NETASQ operating system. The presence of IPSec at the network layer delivers encryption, integrity of the connection, and control of access via unsecured channels. This guarantees customer confidentiality and authenticity of data flows.
The NETASQ VPN solution goes one step further. Once all the above mentioned criteria are matched, the NETASQ Intrusion Prevention Engine undertakes a comprehensive, real-time scan of the data flow across the secured tunnel. This prevents malicious software from accessing the company network.
This is one of the reasons why many of our customers adopt NETASQ VPN solutions and benefit at the same time from the unparalleled intrusion prevention features delivered by the NETASQ IPS engine.
Latest encryption technology
With integral AES algorithm, the VPN module is configured to offer b encryption.
NETASQ’s UTM appliances contain a VPN module which can create VPN tunnels either between VPN gateways (firewall to firewall) or between a VPN gateway and a VPN client installed on a remote device.
Optimal security on any network configuration
Hub’n Spoke architecture means that NETASQ can guarantee failsafe security. Traffic can be analysed at the central site (the Hub) as it arrives, either from multiple sites or from roaming connections (the Spokes). As all Internet traffic flows are analysed by the central site, infection of a roaming device by malicious web traffic is effectively eliminated.
Ease of installation at no incremental cost
NETASQ’s VPN client has a configuration wizard to enable rapid implementation of VPN tunnels. This makes it a particularly profitable solution for integrators. The client runs under Windows 2000, XP and now Windows 7. Configurations are stored in a unique file, making deployment of the VPN Client as easy as copying a file to a directory.
Connection devices for roaming networks now range from portable PCs and smartphones to public computers. Network managers must respond flexibly to support a variety of methods of access, without losing sight of the need to continue to guarantee the highest levels of security and confidentiality. VPN SSL is a key technology in this respect.
- Ability to connect from any device with a web browser
- Delivers exceptional security levels
- Personal configuration
- Security for all users
- Protection for all data flows
NETASQ solutions are designed to deliver roaming access without compromising your security. Connections crossing this VPN tunnel are secured by the native intrusion prevention technology integral to all NETASQ firewalls.
NETASQ’s VPN SSL supports two access modes, on the one hand allowing users to access web applications such as web mail and intranet servers and on the other, enabling mobile applications such as roaming access to office networks.