Transcript
Barracuda SSL VPN 2012
Introduction to the Barracuda SSL VPN!
Clientless secure, remote access for USERS – Traditional Ipsec VPNs connect SITES
Works with any firewall Full-featured, scalable SSL VPN Familiar Barracuda Networks interface / ease of use Economical – no per user fees Barracuda Networks
2!
Traditional Remote Access Challenges! People used to IP VPN solution IP VPN fraught with problems – Fat client • OS dependent • Compatibility
– Connectivity • IP address conflicts • Double-NAT, GRE ports and VPN pass through
– The need to educate the users • After getting an IP, the rest is left to the users Impact: IP VPN is one of the biggest sources of IT help desk expenses Barracuda Networks
3!
Traditional Remote Access Challenges! Traditional VPN – Site-to-site – Few users on dedicated company laptops – Limited to power users
SSL VPN – End –user portal – Can be used securely from public kiosks, home PCs and personal laptops – Enables work from home during disasters Barracuda Networks
4!
Barracuda SSL VPN Features! Clientless remote access – Browser-based remote access
Policy-based resource management – Selectively authorize traffic to approve resources – Active Directory, LDAP and other user databases
Multi-factor authentication – AD passwords, hardware tokens, client certificates, one-time passwords, PIN
Secure end-point access – Network access controls (NAC) – Integrated anti-virus
Auditing and reporting – Integrated reporting
Barracuda Networks
5!
Ease of Use / Security! User don’t want to learn a new application
“The simple access via the Barracuda SSL VPN has meant that these users still have access to their files.” Ashley Scammell, IT Manager Brighton Hill Community College
Barracuda Networks
6!
Business Continuity Planning!
“During the floods, we were able to quickly deploy the Barracuda SSL VPN to allow our staff to continue working remotely.” Chris Robinson, IT Manager Queensland Art Gallery
SSL Site to Site
SSL Complete IPSec Replacement
SSL/Portal Contractor Access
SSL Alternative IPSec Site to Site VPN
Reason For Purchase Barracuda Networks
Business Continuity Access
Data courtesy of Gartner
7!
Mobile Connectivity! 50% of CIOs plan on deploying tablets within 2 years.
“The challenge for IT departments will be providing adequate support and security.” John Reed, Executive Director Robert Half Technology
Barracuda Networks
8!
Deployment Options! Single unit on LAN – Route incoming connections to firewall on port 443 directly to the Barracuda SSL VPN – Simple firewall, port forwarding and NAT rules
Load balanced clusters – Typically, behind either a layer 4 or layer 7 load balancer
9!
Barracuda Networks
Model Comparison! Feature
180
280
380
480
680
880
Maximum number of concurrent users
15
25
50
100
500
1000
LDAP and Active Directory Support
ü
ü
ü
ü
ü
ü
Network Connector / VPN Agent
ü
ü
ü
ü
ü
ü
Web Forwarding / Network Files Access
ü
ü
ü
ü
ü
ü
Citrix XenApp / VNC/ NX / Telnet / SSH / RDP Apps.
ü
ü
ü
ü
ü
ü
Anti-virus scanning
ü
ü
ü
ü
ü
ü
Remote Assistance
ü
ü
ü
ü
Barracuda SSL VPN Server Agent
ü
ü
ü
ü
Multiple User Realms
ü
ü
ü
ü
RADIUS Authentication
ü
ü
ü
ü
Hardware Token Support
ü
ü
ü
ü
Syslog Logging (natively)
ü
ü
ü
ü
ü
ü
ü
SNMP / API
Barracuda Networks
10!
Summary! No per user fees – Simple pricing model – Appliance and subscriptions cost less than renewals of competing products
No ‘spike licenses’ – Avoid surprises with sudden increase in remote users
Ease of use – Consistent interface even if you change network firewalls
Business continuity – Plan for disasters and enable employees to work remotely Barracuda Networks
11!
Thank You!
