Netforce Pty Ltd

Newsletter

  July 2009
    Welcome
    Pandemic Planning
    Secure 3G Access
    IPSec & SSL VPNs
    Applications Remotely
    Managing Remote Users
    Benefits of Teleworking
    Solution Spotlight

  March 2009
    The Netforce Guide
    Benefits Beyond cost savings
    Customer Referral Program
    Top 100 MSPs
    Customer Portal Takes Shape
    Notes Expertise
    Government ISP Filter PilotCUST
    Can you get VoDSL

  October 2008
    Ten IT Goals
    The Solution
    Real World Examples
    White papers

  July 2008
    Site Choices
    DR Options
    Infrastructure
    Site Audit
    Project Management
    White papers

  June 2008
    WAN & Security
    LAN
    Storage

  April 2008
    Wired or Wireless
    FABs of Wireless
    Enter Online

  March 2008
    Break the Bottleneck
    Control Internet usage
    Supplement IT Staff

  February 2008
    Endpoint Security
    My First SAN
    10 Gigabit Ethernet

  January 2008
    Definitions
    MPLS vs IPSec VPN
    Whats New.
    White Papers

  December 2007
    Ciscos security report
    Free Web Filter Trial
    Free iPass Setup

  November 2007
    WiMAX here & now
    Symmetric ADSL2+
    Mid-band Ethernet
    Roaming user 3G
    Whats available where

Back to first page

The role of IT in pandemic planning is largely delivering remote access to your systems & maintaining communications with staff and customers.

Access via the Internet - IPSec & SSL VPNs

Remote users and roaming users can connect to the head office network over the internet via a Virtual Private Network (or VPN). There are two common VPNs which are deployed to deliver users remote access – SSL VPN & IPSec VPN.

IPSec & SSL VPNs have come to be defined as encrypted tunnels over Layer 3 protocols. The encryption makes the addressing and data unreadable and, thus, private. The encrypted payload is placed in another packet that carries it across the network, upon arrival the encrypted packet is authenticated and unencrypted.

The IPSec & SSL protocols are suites of open standards that provide the framework for a device-based (rather than network based) VPN. The suite includes :

*authentication, to make sure you are connecting with a trusted party

*key exchange

*and encryption, to make sure that your traffic stays private and hashing to make sure that it is not changed on the way.

Both IPSec & SSL VPNs deliver secure remote access to your network and allow administrators to control access rights of users. There are however, some differences in their deployment.

IPSec VPNs
IPSec VPNs are perhaps the most common VPNs used within organisations today. IPSec VPN connections are established using a pre-installed VPN client, which lends this method more readily to company-managed desktops. The IPSec VPN client can be customised to meet the needs of the organisation by changing the appearance of the client, its interaction & functionality with desktop applications and other special case needs.

SSL VPNs
SSL VPNs allow users to connect from virtually any location via a web based portal. More recently it has also become possible to establish client-based SSL VPN. This makes SSL VPNs the “go anywhere” VPN solution.

Logging on via a web browser will allow users to utilise web based applications, and some client-server applications such as applications with web interfaces, email, calendars, and file servers. Client-based SSL VPN connections offer full network access. The client is dynamically downloaded & updated whenever the user logs on – there is no requirement for manual software installation and the need for ongoing user support is minimal.

ALSO IN THIS ISSUE

Guide to Pandemic Planning
Is you business prepared to deal with an influenza pandemic?

Secure Access for Roaming Users
Netforce's 3G solution provides your users secure access directly into the private network.

Solution Spotlight - Cisco & WatchGuard VPN devices
We profile two solutions which can deliver your team VPN access to your network.

Virtual Desktops - Remote Access to applications
When your remote access needs depend on users accessing large files, and "data heavy" applications, you may need to investigate implementing a virtual desktop solution.

Managing PCs and Laptops remotely
New remote management tools make it simple to manage and support remote users.

Benefits of Teleworking
Increasing the flexibility and accessibility of your network can deliver many business benefits.

Which VPN is best for my business?
When deciding on how best to deliver your employees or business partners VPN access to your network you will need to make and assessment based on:

*The number of users

*The needs of the users

*The distribution of various users

*The terminal/s which users will need to login from

Many organisations use a mix of both these VPNs to deliver remote access as displayed in the diagram below.

IPSec is best suited to users that require access to all applications and resources as if they were physically connected to the corporate LAN. IPSec also supports stronger encryption strengths (3DES, AES) and guarantees the identity of the remote user because it requires the use of specially provisioned IPSec client software. While IPSec may take longer to deploy, as a system it is more scalable because it operates independent of the applications. IPSec clients are licensed by node whereas SSL VPN licensing is usually based on concurrent sessions.

In general, SSL is best suited to users that need quick, casual or mobile access to applications like email and file sharing. It is also ideal for extranet applications or applications that are web enabled because SSL-enabled browsers are prevalent and can be used to quickly and easily connect customers, partners and suppliers.

If you require granular access, like application control, we suggest looking at dedicated SSL appliances that can control access to applications, that is, the system administrator can define which applications are entitled to use a specific connection. A good example is the WatchGuard SSL100. Click here for a datasheet.

For more information on the technology behind VPN deployment please see our Solution Spotlight, where we profile the Cisco ASA and WatchGuard SSL solutions.

How can Netforce help?
Netforce are able to deliver a number of solutions based on your requirements and your current infrastructure. We have found the WatchGuard and Cisco firewall based VPN solutions to be excellent solutions for remote access. They both include IPSec & SSL VPN connectivity in the one device and are easy to use as a home user or a road warrior.

We have the skills and the experience to deliver a secure VPN solution to meet all of your business needs. To discuss your businesses VPN requitements, please contact Netforce on 02 8969 4000 or email sales@netforce.com.au.

home

solutions

products

news

documentation

about us

contact us

customer login