Security Basics mailing list archives
Re: Deploying SSL-based VPNs
From: Joe <bitshield () gmail com>
Date: Mon, 3 Apr 2006 08:14:58 +0200
Hi Ian Junipers solutions seems to have a very good reputation. Do you have any idea about the dependencies of the java clients? Active-X certainliy depends on an IE explorer. I heard from products (i.e. SafeNets iGate) that they rely on one specific java version. There were also problems with differen SP. All those restrictions create huge problems if the clients are not identically configured (which is usually never the case). Thanks Joe On 3/30/06, Hayes, Ian <Ian.Hayes () wynnlasvegas com> wrote:
-----Original Message----- From: Joe [mailto:bitshield () gmail com] Sent: Tuesday, March 28, 2006 11:52 AM To: security-basics () securityfocus com Subject: Deploying SSL-based VPNs Hi all I'm currently interested in SSL-VPN solutions, problems and deployments. Personally I prefere much more the term "SSL-based remote access" since almost all those products (except OpenVPN) claiming to be SSL-VPNs don't offer any network functionality. Would you guys share your experiences? What are the issues you spotted when deploying SSL-based remote access solutions? Any experiences with certain products? (my company for example made bad experiences with iGate from SafeNet) What features make an SSL-remote access solution a good one? I know these are some very general questions.Look at the SA3000 (formerly known as Neoteris) from Juniper Networks. It's a very robust SSL-VPN that has a lot of features and granular network control. It has an ActiveX client for windows and the Java client actually works on Macs. Haven't tested it on Linux Ian Hayes | Senior Systems Engineer Wynn Las Vegas 3131 South Las Vegas Blvd, Las Vegas, NV 89109 Ph (702) 770-3252 | Cell (702) 266-6002 Ian.hayes () wynnlasvegas com --------------------------------------------------------------------------- EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The Norwich University program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Tailor your education to your own professional goals with degree customizations including Emergency Management, Business Continuity Planning, Computer Emergency Response Teams, and Digital Investigations. http://www.msia.norwich.edu/secfocus ---------------------------------------------------------------------------
--------------------------------------------------------------------------- EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The Norwich University program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Tailor your education to your own professional goals with degree customizations including Emergency Management, Business Continuity Planning, Computer Emergency Response Teams, and Digital Investigations. http://www.msia.norwich.edu/secfocus ---------------------------------------------------------------------------
Current thread:
- Re: Deploying SSL-based VPNs Kenton Smith (Apr 03)
- <Possible follow-ups>
- Re: Deploying SSL-based VPNs Saqib Ali (Apr 03)
- Message not available
- Re: Deploying SSL-based VPNs Saqib Ali (Apr 11)
- Re: Deploying SSL-based VPNs Alice Bryson (Apr 17)
- Message not available
- Re: Deploying SSL-based VPNs Joe (Apr 03)
- RE: Deploying SSL-based VPNs Andrew Shore (Apr 03)
- RE: Deploying SSL-based VPNs Hayes, Ian (Apr 03)
- RE: Deploying SSL-based VPNs Beauford, Jason (Apr 03)
- Re: Deploying SSL-based VPNs Saqib Ali (Apr 04)