Policies fine-tune access to network resources and act at the global, group and user levels. Single IP addresses or IP networks are assigned to each object and you can have multiple entries for each one. A new feature is the Citrix portal, which replaces the ICA client with a Java app that’s downloaded on demand. Each can define all services, or you can choose from HTTP, HTTPS, RDP, VNC, FTP and file shares. You define what services you want to make available by creating network objects. For user authentication, you can use the internal database, but, as with other SSL-VPN appliances, there’s also support for NT domain, AD, RADIUS and LDAP authentication. You start by defining addresses for each port, default routes to the remote networks and, if required, static routes as well. Consequently, its management interface can only be accessed from a system connected to this port.įor testing, we placed some XP systems on the first port to act as remote clients and connected the second port to our LAN where our application servers resided. It offers four Fast Ethernet ports, but only the first can terminate SSL-VPN sessions. Unlike Billion’s BiGuard S10 (web ID: 100213), it doesn’t offer any firewalling capabilities, designed to sit behind an existing firewall and control access to services placed in a DMZ or a separate subnet on the LAN. It offers a reasonably powerful hardware package but, although there are no user limitations, SonicWALL recommends it handles no more than 50 concurrent connections. The SSL-VPN 2000 on review is aimed at businesses with up to 500 employees. SonicWALL moves into this market with three appliances.
0 kommentar(er)
