Transcript
Remote Working with IPSec 1
Save costs with ZyXEL’s Remote Working solutions
2
Increase productivity with ZyXEL Remote Working solutions
3
Upgrade flexible working conditions for employees
www.zyxel.pl
Be quick. Be safe. Be a remote worker.
A remote worker is something to be Secure remote access with many advantages The topic of remote access has become more “en vogue” than ever! The economic crisis has shown that “Always on” and intelligent cost reductions are even more essential than ever before. Virtual Private Networks (VPNs) show you an intelligent and excellent way to meet these challenges and helps to generate new revenue streams for your business.
“Always on” – the requirement of today`s business world A changed working environment, new communication devices
for SB and SMB businesses. One option to reduce the costs here is
and ever-increasing expectations of the end user leads to an
to increase the number of telecommuters who work from home.
increased demand of comprehensive remote access solutions.
Businesses can reduce costs invest in human resource support,
More and more companies employ teleworkers using their
Information and communication technologies equipment, and
home office. There are many drivers that will continue to
other facilities and office space.
influence this growth teleworking worldwide:
People Drivers Business Drivers
Improved flexibility and work-life balance.
Productivity and Cost Savings - more important than ever
Work-life balance is a wonderful motivating factor for ensuring
Today’s businesses can gain competivite advantage by increasing
employee loyalty and retention. Today Employees expect flexible
productivity and saving cost. Businesses are gaining this
working options to improve their flexibility and work-life balance
productivity by using technology to enable current workers to do
because they can achieve greater flexibility of working hours and
more work without limitation of time and places and improving
location of work which meet their needs. Teleworking is the best
rates of employee sick leave and absenteeism.
way to allow workers to reduce travelling times and costs, spend more time with family and achieve an enhanced capacity to
In times of crisis cost structures have to be rearranged and high
balance work and caring resposibilities through greater flexibility
rents for office buildings have become more and more a hassle
and control over working time.
Environment Drivers Benefits for Businesses, People, and Enviroment
Eco Friendly Growing environmental pressure about global warming and other environmental issues is becoming an important impact for business world. Businesses are increasingly looking for green solution to minimize their environmental impact. Teleworking reduced traffic on the road, smog in the air, and lower demands for urban office space. It will result in environmental benefits, including reduced pollution and traffic cengestion.
Business Reduction of real estate costs and overheads Increase in employee productivity and quality of work Be everywhere at any time Attract more and better people People Flexible working conditions for employees Ability to continue working in extreme weather conditions Great balance of work and family life Saving time and money on unnecessary travel Environment Reduction of carbon footprint Reduced traffic congestion—during peak times. Reduced total travel and associated pollution/ environmental impact
Why do you need secure connection? Businesses are experiencing an increasing need to provide
businesses ensure that the safe access is real secure? Is nobody
telecommuting for teleworkers, small branch locations, business
listening in? To achieve this goal, secure, available and cost-
partners and customers. They always need, independent from
effective remote access is critical for businesses. You need to be
their location, access to company information and expect an easy
absolutely sure that remote access is always available and of all
and especially safe access to the necessary network resources –
things completely secure.For this reason, most companies use
everywhere, every time and with every device. However, how do
virtual private networks (VPNs) to guarantee secure connection.
City
Requirement Company VPN Access via WiFi
Home Office
Partner Site
WiFi Hotspot SOHO VPN Gateway
IP Phone
Network Access
Requirement - Same access as in the central site
Public Access Network
Air Port
Requirement Firewall
VPN through
Hotel
Central Site
Dial or Broadband
Internet Kiosk
Requirement
Quick connection
VPN Gateway
AAA Application Servers Servers
Requirement Access to company applications
Graphic: Secure remote access via VPN is a widespread requirement
Types of Secure connections - Virtual Private Networks (VPNs) A virtual private network (VPN) provides secure communications
With the explosion of broadband, mobile devices and online tools,
between sites without the expense of leased site-to-site
teleworking is on the rise. VPN can easily enable this connection to
lines. A secure VPN is a combination of tunneling, encryption,
become a safe, quick and cost effective remote working solution.
authentication, access control and auditing. It is used to transport
Generally there are two primary methods for deploying remote-
traffic over the Internet or any insecure network that uses TCP/IP
access VPNs: IPSec and SSL. Each method has its advantages based
for communication. Virtual Private Networks (VPNs) are the right
on your networking requirements.
solution for a reliable and safe remote access into the company.
IPSec VPNs Internet Protocol Security (IPSec) is a standards-based VPN that
are established using VPN client software preinstalled on the
offers flexible solutions for secure data communications across a
user desktop, making it primarily useful on company-managed
public network like the Internet. IPSec is built around a number of
desktops. The following figure is an example of an IPSec VPN
standardized cryptographic techniques to provide confidentiality
tunnel.
data integrity and authentication at the IP layer. Connections
Internet VPN Tunnel
X
Y
A
B
Graphic: The VPN tunnel connects the firewall (X) and the remote (peer) IPSec router (Y). These routers then connect the local network (A) and remote network (B).
SSL VPNs A Secure Socket Layer Virtual Private Network (SSL VPN) uses SSL to
required. Remote users can use Internet Explorer or other standard
provide VPN network access to remote users. Since SSL (the Secure
web browsers. There are two SSL VPN network access modes:
Socket Layer protocol) is used no security software installation is
reverse proxy and full tunnel.
Reverse Proxy Mode
Full Tunnel Mode LAN (192.168.1.x) LAN (192.168.1.x)
192.168.1.100 https://
Web Mail
File Share
Internet
Web-based Application
https://
Internet Web-based Application
Web Mail
File Share
Application Server
Non-Web
Why choose IPSec VPN IPSec vs SSL VPNs IPsec and SSL VPN each have their own advantages, so what is “better” may often come down to what is most suited for your network. The following matrix is introducing difference between IPSec and SSL VPN. Criterion
IPSec VPN
SSL VPN
Type of connection
Fixed connection
Transient connection
Cost
high fixed/Low-variable (the box does all the work)
moderate fixed/High-variable (manage client software)
Scalability
Easily deployed and scalable
Scalable on server side
Type of device
Enterprise owned and managed
Managed or unmanaged
Network Environment and Device
Users -
Remote or branch office Mobile employees Business partners Customers Applications and content Applications Supported
All IP-based services
Web-enabled applications, File sharing, E-mail
But under some conditions, IPSec VPN is better than SSL VPN. IPSec
between a branch or remote office and a corporate headquarters.
VPN is best suited for point-to-point access. When business need
It can be used successfully to provide acces to a small finite
a permanent connection between two specific locations, such as
number of remote workers using company-managed laptops.
ZyXEL solution offering ZyXEL has designed a comprehensive IPSec VPN solution for remote
IPSec VPNS
working that extend the resources of the office enviroment to
Layer 3 Encryption between Gateway-to-Gateway or Gateway-to-Remote client.
employee homes or alternative work locations. With the ZyWALL UTM Firewall appliance ZyXEL offers ideal solution to these requirements. ZyXEL Security Appliance ZyWALL
Additionally, The ZyWALL VPN has the intelligence to recover failed
Site B
Site A
VPN tunnels to constantly keep the secured access on.
VPN
Internet
ISP 1
WAN 1 WAN 2
ZyWALL USG
VPN
ISP 2
ZyWALL USG
Spring Fever with Free IPSec Remote Access
GET a
FRcEClEient
IPSe
ZyXEL and TheGreenBow celebrate three years
!
NOW
of ZyWALL VPN Client, powered by TheGreenBow The offer includes following devices and free items: GE
Ta
EE nt FRec Clie !
IPS
GE
Ta
EE nt FRec Clie !
IPS NOW
GE
Ta
EE nt FR Clie
! ec IPS NOW
GE
Ta
EE nt FRec Clie !
IPS NOW
GE
W NO
1 x Free IPSec client
For each ZyWALL USG 200
2 x Free IPSec client
For each ZyWALL USG 300
3 x Free IPSec client
Ta
EE nt FRec Clie !
IPS NOW
GE
For each ZyWALL USG 100
Ta
EE nt FRec Clie !
IPS NOW
HOW TO GET UP TO 3 FREE IPsec CLIENTS
The devices must be bought through an official ZyXEL distributor. The promotion process is easy:
t Purchase a ZyWALL USG 100, a ZyWALL USG 200 or a ZyWALL USG 300 t Fill out the claim form and email, fax or post to your local ZyXEL branch along with a copy of your distributor invoice. t After validation you will receive the free IPSec client licence/licenses per email
www.zyxel.pl Benefit from ZyXEL. Partner with ZyXEL For instants benefits join ZyXEL’s Partner Program at
www.zyxel.pl
