Client-to-site VPNs connect remote users to the corporate network.
Client-to-Site IPsec VPN
There are three types of IPsec VPNs available:
- Shared Key – No external CA is required. A passphrase (shared key) is entered on the server and the client. This passphrase is used to authenticate the connection.
Client Certificate – X.509 certificates are generated by an external CA. These certificates are used to authenticate the client. This method is more secure.
- Shared Key or Client Certificate – Client and server require either a shared key or valid client certificate to authenticate the remote device.
Supported VPN Clients
The following VPN clients are supported:
Setting Up an IPsec Client-to-Site VPN
For instructions on how to set up an IPsec VPN, see the following articles:
- How to Configure a Client-to-Site VPN with Shared Key Authentication
- How to Configure a Client-to-Site VPN with Certificate Authentication
- How to Configure the Apple iOS VPN Client for IPsec Shared Key VPN
- How to Configure Apple iOS VPN Client for IPsec VPN with Certificate Authentication
- How to Configure the Android VPN Client for IPsec Shared Key VPN
SSL VPN Portal
The SSL VPN lets any user with a browser connect to published corporate resources—such as Exchange OWA, RDP connections to internal servers/computers, or internal Wikis. You can also use the My Network feature to initiate a full routed network VPN from the SSL VPN portal.
Setting up a SSL VPN
For instructions on how to set up SSL VPN, see SSL VPN.
Point-to-Point-Tunnel-Protocol (PPTP) is offered with up to 128-bit of MPPE encryption. It provides the following:
- Long standing widespread support across many platforms.
- Use if no other VPN client is available for client platform.
- Use if VPN performance is more important than security.
- Support for external authentication over MS-CHAP-v2 or a local user database.
PPTP VPNs have the following limitations:
- No data integrity verification.
- Weak encryption using only a 128-bit key.
Supported VPN Clients
Almost every modern operating system includes a PPTP client. The following clients are officially supported by Barracuda Networks:
- Native VPN clients included in Windows, macOS, and Linux.
- Native VPN clients included in iOS and Android.