Introduction to Barracuda SSL VPN

Download Report

Transcript Introduction to Barracuda SSL VPN

Barracuda SSL VPN
Introduction to the Barracuda SSL VPN
• Remote access for USERS
(Traditional IPSec VPNs connect SITES)
• Works with any firewall
• Full-featured, scalable SSL VPN
• Familiar Barracuda Networks interface / ease of use
• Economical – no per user fees
Traditional Remote Access Challenges
• Market still dominated by “IP VPN”
– PPTP built into Windows
– IPSec offered with many firewalls
• IP VPN fraught with problems
– IP address conflicts between networks
– Double-NAT, GRE ports, and VPN Passthrough
– Requirement for “fat client” software that is OS dependent and that can
create compatibility issues with other software
– Often supported only on dedicated company laptops to specific users
• After getting an IP, the rest is left to the users
– Need to educate users on what is available to them over VPN
Impact: IP VPN is one of biggest sources of IT help desk expenses
Augment IPSec with SSL VPN
Traditional VPN
•
Site-to-site
•
Some users on
dedicated company
laptops
•
Generally limited to
sales or field
technicians
SSL VPN
•
End user portal
•
Enables work from
home during disasters
•
Can be used securely
from public kiosks,
home PCs and personal
laptops
Barracuda SSL VPN Benefits
POWERFUL
REMOTE ACCESS
EASY TO USE
SECURE
AFFORDABLE
Barracuda SSL VPN Benefits
POWERFUL REMOTE ACCESS
POWERFUL
REMOTE ACCESS
• Intranet Web sites
SECURE
• Network file shares
• Remote Desktop, VNC, Citrix
AFFORDABLE
EASY TO USE• Other client / server applications
Barracuda SSL VPN Benefits
SECURE
POWERFUL
• Uses SSL encryption built SECURE
into
REMOTE ACCESS
modern browsers
• Anti-virus scanning of uploaded files
• Granular access policy
• Client access controls
EASY TO USE
• Cache cleaning
AFFORDABLE
• Supports LDAP, RADIUS, and
multifactor authentication
Barracuda SSL VPN Benefits
EASY TO USE
POWERFUL
SECURE
REMOTE
ACCESS
• Works
with any Java-enabled Web browser
• End user portal to display available resources
• Single sign-on to Web, RDP, and other
applications
AFFORDABLE
EASY TO USE
• Installable client for use with legacy applications
Barracuda SSL VPN Benefits
AFFORDABLE
POWERFUL
REMOTE ACCESS
SECURE
• No per user fees
EASY TO USE
AFFORDABLE
Deployment Options
• Single unit on LAN
– Route incoming connections to firewall on port 443 directly to the Barracuda
SSL VPN
– Simple firewall, port forwarding and NAT rules
• Load balanced clusters
– Typically, behind either a Layer 4 or Layer 7 load balancer
Load Balancer
Clustered Barracuda
SSL VPNs
Model Comparison
Feature
180
280
380
480
680
Maximum number of concurrent users
15
25
50
100
500
LDAP and Active Directory Support





Network Connector / VPN Agent





Web Forwarding





Network File Access





Remote Desktop





Antivirus





Barracuda SSL VPN Server Agent



Multiple User Realms



RADIUS Authentication



Hardware Token Support



Syslog Logging


SNMP


Summary
• Opportunity to improve
access for end users
• Enable access from home
PC’s and personal laptops
• Provide a consistent
interface even if you change
network firewalls
• Plan for disasters and
enable employees to work
remotely