Professional Integrated SSL-VPN Appliance for Small and Medium-sized businesses



Similar documents
Proof of Concept Guide

SSL VPN Technical Primer

Table of Contents. 1 Overview 1-1 Introduction 1-1 Product Design 1-1 Appearance 1-2

Gigabit SSL VPN Security Router

ZyWALL SSL 10. Integrated SSL-VPN Appliance. Support Notes. Revision 2.0 April. 2007

A Guide to New Features in Propalms OneGate 4.0

Using a VPN with Niagara Systems. v0.3 6, July 2013

Barracuda Networks Technical Documentation. Barracuda SSL VPN. Administrator s Guide. Version 2.x RECLAIM YOUR NETWORK

ZyWALL SSL 10. Support Notes. Integrated SSL-VPN Appliance. ZyWALL SSL 10 Support Notes. Revision 1.0 Dec. 2006

DIGIPASS Authentication for SonicWALL SSL-VPN

Barracuda SSL VPN Administrator s Guide

A host-based firewall can be used in addition to a network-based firewall to provide multiple layers of protection.

SonicWALL Clean VPN. Protect applications with granular access control based on user identity and device identity/integrity

External authentication with Astaro AG Astaro Security Gateway UTM appliances Authenticating Users Using SecurAccess Server by SecurEnvoy

Using a VPN with CentraLine AX Systems

N4100/ VSG-1200 V2 Hotspot/Service Gateway Series. A Complete Hospitality Solution with Wireless LAN, Internet Access and Billing System.

Secure remote access to your applications and data. Secure Application Access

SSL-VPN 200 Getting Started Guide

Chapter 6 Configuring the SSL VPN Tunnel Client and Port Forwarding

Enterprise Wireless LAN. Key Features. Benefits. Hotspot/Service Gateway Series

SSL-Based Remote-Access VPN Solution

Steps for Basic Configuration

Sophos UTM. Remote Access via PPTP. Configuring UTM and Client

Secure Remote Access Series for SMB

Mobile Access R Administration Guide. 13 August Classification: [Protected]

Network Security. Protective and Dependable. 52 Network Security. UTM Content Security Gateway CS-2000

Permeo Technologies WHITE PAPER. HIPAA Compliancy and Secure Remote Access: Challenges and Solutions

SonicWALL PCI 1.1 Implementation Guide

PortWise Access Management Suite

How To Balance Out The Power Of The Usg On A Network On A Pc Or Mac Mac 2.5 (For A Mac 2) On A 2G Network On An Ipnet 2.2 (For An Ipro) On An Un

Astaro Security Gateway V8. Remote Access via SSL Configuring ASG and Client

How NETGEAR ProSecure UTM Helps Small Businesses Meet PCI Requirements

Enterprise Wireless LAN. Key Features. Benefits. Hotspot/Service Gateway Series

SSL SSL VPN

Secure Remote Access Series

BlackBerry Enterprise Server for Microsoft Exchange Version: 5.0 Service Pack: 2. Feature and Technical Overview

NETASQ MIGRATING FROM V8 TO V9

The SSL device also supports the 64-bit Internet Explorer with new ActiveX loaders for Assessment, Abolishment, and the Access Client.

RSA SecurID Ready Implementation Guide

The Ultimate WLAN Management and Security Solution for Large and Distributed Deployments

SUN COBALT Qube 3 Appliance FAQ

Implementing PCoIP Proxy as a Security Server/Access Point Alternative

Step-by-Step Configuration

Network Access Security. Lesson 10

Cisco RV082 Dual WAN VPN Router Cisco Small Business Routers

Secure Remote Access Give users in office remote access anytime, anywhere

ENHWI-N n Wireless Router

Novell Access Manager SSL Virtual Private Network

QUICK START GUIDE. Cisco S170 Web Security Appliance. Web Security Appliance

Gigabit Multi-Homing VPN Security Router

ZyWALL 5. Internet Security Appliance. Quick Start Guide Version 3.62 (XD.0) May 2004

ZyWALL SSL 10. User s Guide. Integrated SSL-VPN Appliance. Version /2008 Edition 1

VPN Configuration Guide. ZyWALL USG Series / ZyWALL 1050

vcloud Director User's Guide

Gigabit Multi-Homing VPN Security Router

How To Configure A Kiwi Ip Address On A Gbk (Networking) To Be A Static Ip Address (Network) On A Ip Address From A Ipad (Netware) On An Ipad Or Ipad 2 (

Cisco S380 and Cisco S680 Web Security Appliance

INTEGRATION GUIDE. DIGIPASS Authentication for Cisco ASA 5505

INTRODUCING KERIO WINROUTE FIREWALL

DIGIPASS Authentication for Sonicwall Aventail SSL VPN

BlackBerry Enterprise Server for Microsoft Office 365 preinstallation checklist

SSL-TLS VPN 3.0 Certification Report. For: Array Networks, Inc.

Network protection and UTM Buyers Guide

SECURE ACCESS TO THE VIRTUAL DATA CENTER

Gigabit Content Security Router

Sophos UTM. Remote Access via SSL. Configuring UTM and Client

Next Gen Firewall and UTM Buyers Guide

Introduction to the EIS Guide

Network Security. Protective and Dependable. Pioneer of IP Innovation

Cisco Small Business ISA500 Series Integrated Security Appliances

Cisco IOS SSL VPN: Router-Based Remote Access for Employees and Partners

Tech Brief. Enterprise Secure and Scalable Enforcement of Microsoft s Network Access Protection in Mobile Networks

RuggedCom Solutions for

Endpoint Security VPN for Mac

NETASQ & PCI DSS. Is NETASQ compatible with PCI DSS? NG Firewall version 9

WHITEPAPER IPSEC VPN Vs. SSL VPN

When your users take devices outside the corporate environment, these web security policies and defenses within your network no longer work.

SSL VPN Server Guide Access Manager 3.1 SP5 January 2013

CradlepointCOR IBR350Specifications

SSL VPN Technology White Paper

Using Innominate mguard over BGAN

PortWise Access Management Suite

nappliance misa Server 2006 Standard Edition Users Guide For use with misa Appliances 2006 nappliance Networks, Inc.

Cisco ASA 5500 Series Adaptive Security Appliance 8.2 Software Release

Clientless SSL VPN Users

Gigabyte Management Console User s Guide (For ASPEED AST 2400 Chipset)

Getting Started. Symantec Client Security. About Symantec Client Security. How to get started

Palo Alto Networks User-ID Services. Unified Visitor Management

Configuration Guide. BlackBerry Enterprise Service 12. Version 12.0

Cisco IOS SSL VPN: Router-Based Remote Access for Employees and Partners

ActivIdentity 4TRESS AAA Web Tokens and SSL VPN Fortinet Secure Access. Integration Handbook

Astaro Gateway Software Applications

Unified Threat Management

Securing Networks with PIX and ASA

Citrix Access Gateway

TK C -25 C 95% RH EMC TK701G TK701U TK704G TK704U TK704W. TK-Series Cellular Router

Installing and Configuring vcenter Multi-Hypervisor Manager

Content Scanning for secure transactions using Radware s SecureFlow and AppXcel together with Aladdin s esafe Gateway

Transcription:

Professional Integrated Appliance for Small and Medium-sized businesses Benefits Clientless Secure Remote Access Seamless Integration behind the Existing Firewall Infrastructure UTM Security Integration Deployed Alongside ZyWALL UTM Supporting AD/LDAP/RADIUS and Two-factor Authentication ZyWALL SecuExtender Technology Unified Policy Management with Object-Based Configuration Endpoint Security Support Dual-Mode (NAT-/DMZ-Mode) Installation with Setup Wizard Clientless Secure Remote Access The ZyWALL SSL 10 is an integrated appliance designed for small and medium-sized organizations with simple, secure and clientless remote access to the resources on corporate networks. Remote access has never been so easy since no client software is required on users laptops. They are enabled to access corporate applications or shared files with just standard Web browsers, no pre-installed or pre-configured VPN software is needed. Better yet, administrators can reduce the costly support tasks involved in deploying, configuring and updating VPN software. Highly Integrated Capabilities on Existing Network Infrastructure The ZyWALL SSL 10 fits seamlessly into any network topology and can be easily deployed alongside almost any third-party firewall as a secure remote access solution. This enables you to leverage the existing network infrastructure without the need to purchase additional hardware. When deployed alongside a ZyWALL UTM running Anti-Virus and IDP Service, the ZyWALL SSL 10 utilizes the powerful UTM technology to scan traffics for malicious threats such as viruses, worms, Trojans and spyware. Comprehensive End-User Authentication Mechanism The ZyWALL SSL 10 supports not only the internal database, but also various backend user repositories such as Microsoft Active Directory, LDAP and RADIUS to seamlessly integrate with the existing user database. ZyWALL SSL 10 supports the Two-factor Authentication method that requires two independent pieces of information to recognize identity and grant privileges. Two-factor Authentication is stronger and more rigorous than the traditional password authentication that requires only one factor (the user password), and it is especially useful for protecting against threats from keylogger programs. Integrated Appliance zywall ssl 10 ZyWALL-SSLVPN SecuExtender Technology ZyWALL SSL 10 provides powerful capability to seamlessly access any corporate network resource by transparently pushing a downloadable thin client (ZyWALL-SSLVPN SecuExtender) to users desktops or laptops. Administrators can allow specific user groups (such as employees) to create IPSec-like network tunnels for accessing any resource, while other user groups (such as customers, vendors or partners) may access restricted applications and resources listed only on the user portal.

Unified Policy Management with Object-Based Configuration The ZyWALL SSL 10 provides the ability for administrators to define objects such as user groups, network address ranges or applications. When security policies are changed, administrators can modify the pre-defined objects and propagate the changes instantly without redefining rules, enabling businesses to implement and manage security policies easily and consistently. For example, administrators can create one policy for the Sales group to access general applications, and create another for R&D to access confidential design documents in addition to the general elements. Endpoint Security Support Remote access enables more users to take advantage of the network from potentially risky end points and devices, including wireless hotspots and unmanaged PDAs; however the risk could render access management through user identity simply insufficient. To effectively control network access, ensure secure communications and reinforce data protection, more attention need to be paid to the security level of user environments. The ZyWALL SSL 10 provides endpoint security features to enhance protection by detecting the presence of required processes (e.g. virus scan, personal firewalls, OS patch levels, registry settings, etc.) on the client PC as well as the browser cache cleaner. Dual-Mode (NAT-/DMZ-Mode) Installation with Setup Wizard With the ability to shorten the initial setup procedure to less than 10 minutes, the two-scenario Setup Wizard helps administrators to easily configure the device and reduce the administration cost. The ZyWALL SSL 10 can be easily deployed at the network gateway as a one-box Firewall/ device, or alongside any third-party firewall as a secure remote access solution. Clientless Secure Remote Access Using standard browser to access Internal network applications Using standard browser to access Internal file-sharing folder Highly Integrated Capabilities on Existing Network Infrastructure Employee on Home Computer ZyWALL UTM provides Anti-Virus/IDP inspection on traffic WAN ZyWALL UTM or Third-party firewall LAN Email Server Firewall LAN Zone BI System Web-based Application Application Server (Inventory, Store...) Employee Laptop in Airport Kiosk or in Hotel Encrypted DMZ Decrypted Remote Desktop Network Extend Authorized Partner Authorized Customer

Comprehensive End-User Authentication Mechanism (1) One-factor (Username/Password) (2) ZyWALL OTP (One-Time Password) Local Database User Group 1 User Group 2 External Database ZyWALL SSL VPN Active Directory RADIUS LDAP ZyXEL Two-Factor Authentication Server for ZyWALL OTP ZyWALL-SSLVPN SecuExtender Technology Restricted Access: Extranet Application for Partners, customers Full Access: Intranet Application for Employees Unified Policy Management with Object-Based Configuration Policy 1 (Sales) User 1 Application 1 IP Pool 1 Network 1 User 2 Object Database User 1 Application 1 IP Pool 1 Network 1 User 2 Application 2 IP Pool 2 Network 2 Policy 2 (R&D) User 3 Application 1 IP Pool 3 Network 1 User 4 Application 3 Network 3 User 3 Application 3 IP Pool 3 Network 3 User 4 Application 4 IP Pool 4 Network 4

Endpoint Security Support ZyWALL SSL VPN Remote Users Dual-Mode (NAT-/DMZ-Mode) Installation with Setup Wizard DMZ Mode: Deployed behind Firewall (at DMZ port of Firewall) NAT Mode: Deployed at network gateway as one-box solution for NAT Router and Gateway

Application Diagram DMZ Mode: Deployed behind Firewall Main Office LAN Resource ZyWALL UTM provides Anti-Virus/IDP inspection on traffic Email Server BI System Web-based Application Application Server (Inventory, Store...) Remote Desktop Network Extend Employee on Home Computer Employee Laptop in Airport Kiosk or in Hotel Main Office ZyWALL SSL 10 IPSec-VPN Remote Office LAN Resource Authorized Partner Authorized Customer Remote Office Employee Laptop in Airport Kiosk or in Hotel Remote Desktop Network Extend NAT Mode: Deployed at Network Gateway One-box solution for NAT Router and Gateway LAN Resource Employee on Home Computer Email Server BI System Web-based Application Application Server (Inventory, Store...) Employee Laptop in Airport Kiosk or in Hotel Remote Desktop Network Extend Authorized Partner Authorized Customer For more product information, visit us on the web www.zyxel.com Copyright 2007 ZyXEL Communications Corp. All rights reserved. ZyXEL, ZyXEL logo are registered trademarks of ZyXEL Communications Corp. All other brands, product names, or trademarks mentioned are the property of their respective owners. All specifications are subject to change without notice. 65-100-002501G 02/07

Specifications System Specifications Mode of Deployment NAT Mode DMZ Mode Networking WAN: PPPoE, Static, DHCP LAN: DHCP Server NAT SSL VPN SSL VPN : 10, 25 (Optional Upgrade) SSL Protocol: SSL v2, SSL v3, TLS 1.0 Encryption: DES, 3DES, RC4 (128), AES (128, 256), IDEA, ADH, DH, DHE, RSA, DSS, CBC, 3CBC, MD5, SHA-1 Access Mode Reverse Proxy Mode Port Forwarding Mode Full Mode Authentication Internal user database RADIUS LDAP Microsoft Active Directory Two-factor Authentication Certification Self-signed External CA Application Support Web Application: Web Server, Email, OWA Non Web-based Application: HTTP, HTTPS, FTP, Telnet, TFTP, SMTP, SMTPS, IMAP, IMAPS, VNC, RDP, NTP, SSH, SQUID, CIFS, POP3, POP3S File-Sharing: Web-based CIFS Full Network Access via ZyWALL-SSLVPN SecuExtender: Any TCP/IP based application (ICMP, VoIP, IMAP, POP, SMTP, etc.) Browser Support Explorer version 5.5 with MSXML, version 6 and above. Netscape version 7.2 and above Mozilla 1.7.3 and above Firefox 1.0 and above Security User-/Group-based Policy Control User-/Group-based Access Control User-/Group-based IP Pools User-/Group-based Routing User-/Group-based Application List User-/Group-based Endpoint Integrity Check Cache Cleaning System Management Web GUI Dual-mode Setup Wizard Dashboard Email Notification Real-time Monitoring Logs Report NTP Support Hardware Specifications Processor: 266 MHz with cryptographic accelerator Memory (Flash/DRAM): 128 MB/128 MB Status LED Indicator: PWR, SYS Reset Button: Yes WAN: 10/100 Auto MDI/MDIX LAN: 4-Port Switch, 10/100 Auto MDI/MDIX Console: RS 232 DB9 Connector Power: 12 VDC Max Power Assumption: 7.5 W Warranty: Two years Physical Specifications Dimensions: 242.0 (W) x 75.0 (D) x 35.5 (H) mm Weight: 1,200 g Environmental Specifications Operation Environment: - Temperature: 0 C ~ 50 C - Humidity: 20% ~ 95% Storage Environment: - Temperature: -30 C ~ 60 C - Humidity: 20% ~ 95%

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information