VPN offers a secure, efficient, and economical way to connect physically separate networks and to let users access corporate network resources from a remote location.
The firewall provides three types of VPN services:
- Client-to-site VPN – Lets remote users access the corporate network with VPN clients and mobile devices.
- Site-to-site VPN – Securely and transparently connects remote locations with your network.
- SSL VPN – Lets remote users access corporate resources over a secure web interface without the need of configuring a VPN client.
Client-to-site VPN offers users access to the corporate network from a remote location over a secure tunnel connection. Clients authenticate by username/password and/or X.509 certificates. Depending on the VPN client device, the CloudGen Firewall supports TINA or IPsec VPN protocols.
For more information, see Client-to-Site VPN.
Site-to-site VPNs establish secure connections between two locations over a public network such as the Internet. The proprietary TINA protocol offers intelligent traffic management capabilities using Traffic Intelligence, WAN Optimization, and on-the-fly traffic shaping. For connectivity with third-party VPN gateways, it is also possible to create site-to-site VPN connections using IPsec.
For more information, see Site-to-Site VPN.
SSL VPN grants users secure SSL-/TLS-encrypted access to internal corporate resources and applications through a customizable web interface without the need of installing or configuring a VPN client. SSL VPN supports centralized authentication, authorization, and content inspection. Server and application URLs are translated into a URL namespace, making resources accessible via a single hostname.
For more information, see SSL VPN.