Welcome to WebmasterWorld Guest from 126.96.36.199
Forum Moderators: phranque
Basically, this is the situation:
Our company has a head office that will have most of the IT infrastructure, like a network drive, a printer, etc etc. The network drive is the main thing...
We also have employees on the road and in their home offices (all of which have broadband access) who need to connect to the network drive as if they were connected to the LAN in the head office. So that rules out browser-based VPN solutions, as I need it to be totally seamless and transparent to the end user.
Basically, this is what I think the solution looks like:
From what I can gather, this leaves the option of a hardware solution that sits on the head office network. The one I'm looking at right now is a Netgear FVX538 ProSafe VPN Firewall 200.
In very simple terms, is it just a little box that sits on the network that enables the network to accept incoming VPN connections via IPSec software? I assume that the IPSec software is simply (or with great difficulty) installed on the client pc's (i.e. the remote workers' laptops) and then automagically connects to the VPN? And then I would be able to mount network drives and thus get all the other services working?
I would appreciate correction/guidance from anyone that may have any knowledge of this! Thanks for your help...
There are several very good browser based VPN using SSL tunnels out there, with a reverse proxy solution. (I have implemented a couple with various two and three factor add-ons.)
For example, the F5 Firepass will allow you to set up such SSL tunnel to your network, providing various network mapping, printing and other "local" functionality.
In addition you can set up specific "application tunnels" whereby the user have access to specific systems only, instead of the whole network.
This solution can also verify the client machine has appropriate anti-malware protection loaded, redirect the user if not - or take it a step further and update them.
Client requirements with the F5 Firepass are a browser IE, Firefox, and more), and an Internet connection. The client will recieve either a small Java app or ActiveX control (depending on the browser and OS).
Is the built in windows XP VPN connection software good enough? Or should we buy third party software?