1 / 39

Cyberoam SSL VPN - Secure Remote Access

Cyberoam SSL VPN - Secure Remote Access. Established in 1999. 500+ Employee Company. ISO 9001-2000 Certified. 55 Distributors covering 75+ countries. 30000+ combined installation of. Central Console (CCC). Unified Threat Management. Agenda of Presentation The Business Need of SSL VPN

baakir
Download Presentation

Cyberoam SSL VPN - Secure Remote Access

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript


  1. Cyberoam SSL VPN - Secure Remote Access

  2. Established in 1999. 500+ Employee Company. ISO 9001-2000 Certified. 55 Distributors covering 75+ countries. 30000+ combined installation of Central Console (CCC) Unified Threat Management

  3. Agenda of Presentation • The Business Need of SSL VPN • About Cyberoam SSL VPN • Product Walkthrough

  4. The Business Need for SSL VPN Also, An Introduction to Virtual SSL VPN Appliances

  5. Secure, Remote Access is indispensable in today’s work environment Scenario 1: Employees and Mobile Workers

  6. Secure, Remote Access is indispensable in today’s work environment Scenario 2: Partners, Suppliers and Customers get Extranet access

  7. Solutions Comparison: When to use What? IPSec SSL VPN PPTP Use SSL VPN in • Different Locations: Home, Airport, Hotels, cyber cafe • Various Devices • laptops, home PC, PDA, mobile phone • Extranet access to customers, partners, suppliers • Web-enabled access – no need to install client on device L2TP Ideal for a limited number of employees accessing corporate resources through clients on trusted devices

  8. The Onset of Virtualization in SSL VPN… How is it done? • Utilizing virtualization environments like VMware • Building Virtual appliances within existing hardware • Running a large number of independent, virtual SSL VPN gateways • Implementing complex virtual datacenters so servers are consolidated across multiple physical servers

  9. The Onset of Virtualization in SSL VPN… Benefits • Multiple SSL VPN instances can run on one single appliance • Appliance-wide or individual instances upgrades • Optimum hardware resource allocation • Resilience to hardware failure • Increases deployment scalability • Minimizes operating and maintenance costs • Eco-friendly

  10. Business Advantages of SSL VPN • Higher security due to 128-K Encryption and Authenticated Access • Granularly restrict users to specific applications and resources • Security checks on endpoint devices even before giving access • Ease of Use • Lower costs, Less Maintenance • Least Admin intervention • Access from any web-enabled device • Minimum downtime

  11. About Cyberoam SSL VPN

  12. Cyberoam SSL VPN – Secure Remote Access Cyberoam SSL VPN Employees, Customers, Partners and guest users Different Devices Internal Resources

  13. Cyberoam SSL VPN – How does it work? Client Certificate Server Certificate Username/Password Roaming User Cyberoam SSL VPN Servers (App./Web/FTP/File Share/WTS etc) User gets a list of applications based on policies All Published Applications/Resources

  14. Why choose Cyberoam SSL VPN? • Identity-based Security • Monitor user log-on activity including username, MAC address, IP address of endpoint • Know “who is doing what” in the network • Available as Virtualized Solution • Available as virtual appliances • Run a large number of independent virtual gateways from existing infrastructure • Scalability and Performance • Unlimited user license • N+1 clustering with application load balancing

  15. Key Features • Multiple Applications Support • Microsoft Outlook, TCP, 802.11X and UDP, FTP, Citrix and Microsoft Terminal Servers and more • Secure Firewall Traversal • Works alongside existing firewalls • Prevents exposure of UDP port ranges to hackers • Does not publish internal IP address to outside network

  16. Key Features • Authentication and Authorization • Supports LDAP, AD, RADIUS etc. • E-mail based user-provisioning • Support for external two-factor& biometric authentication • Access Mode • Clientless VPN with a browser agent for seamless access to applications • Linux, Windows, MAC support

  17. Key Features • Device Profiling (Endpoint Security) • Product checks – Anti-virus, Firewall & Anti-spyware • Up to 1100+ products supported • MAC address and IP address checks • Quarantine policy for devices that fail profiling test • Remediation information sent to user for any failed access e.g. updating anti-virus software, configuring firewall etc.

  18. Key Features • Management • Web-based and Command Line Insole • Wizard-driven installation • Role-based administration • Monitor and disconnect live users • Real-time status and monitoring • Auditing & Logging • Users logon activity including time of access, username, MAC address and IP address of endpoint

  19. Product Walkthrough

  20. Dedicated SSL VPN appliance Deployment

  21. Cyberoam SSL VPN Virtual Appliance • No need to buy separate hardware!! • Based on VMWare virtualization platform • Install multiple virtual SSL VPN machines Cyberoam’s Virtualization platform, VMware allows virtual datacenters where servers are consolidated across multiple physical servers, for guaranteed efficiency and performance

  22. Virtual Appliance Deployment Diagram

  23. VPN States • Bootstrap State • Initial Installation • Configuration state • State where firmware upgrades, license upgrades, backup-restore can be performed (Involves downtime) • Run State • Resource configuration on-the-fly possible • State in when users connect and access their resources Note: Appliance can be changed from Configuration state to Run State as and when needed or vice versa

  24. Configuration State

  25. Endpoint Security Policies Device Profiling AD/LDAP Groups Logical Steps for Configuration

  26. Email to User

  27. End-Point Security Steps Mandatory Profile Quarantine Profile General Profile

  28. Enrollment

  29. Execution

  30. Execution - RDP

  31. Execution with EPS (No Failure)

  32. Execution with EPS (Policy Failure)

  33. Pricing and Support • Virtual Appliance Mode • Base License – Default 5 user license available for 30 days FREE TRIAL • No Endpoint Security in Trial version • Dedicated Appliance Mode • Concurrent user license (upgrade option available e.g.50 to 100 user license upgrade) Support Plans: 8X5 and 24X7 plans based on appliance + per user license Free Trial Download online with support + full access to all features

  34. Comparison of Cyberoam Dedicated Appliance Offerings • CR-SSL-800 • Supports 1-50 concurrent users • Secure, remote Intranet & Extranet access • Designed For SMEs, MSSPs and more • CR-SSL-1200 • Supports 51-250 concurrent users • Secure, remote Intranet & Extranet access • Designed For SMEs, large enterprises, MSSPs and more • CR-SSL-2400 • Supports 251-1000 concurrent users • Secure, remote Intranet & Extranet access • Designed For large global enterprises, MSSPs

  35. Summary Benefits for MSSPs • New Revenue Opportunities: Global SSL VPN market at $500 million in 2008 (Source: Gartner) • Support: 24X7 Support and monitoring • Centralized Policy Management • Continuous access • Familiar, easy-to-use interface • Cyberoam Virtual Appliances allow MSSPs to service multiple clients through shared allocation of hardware resources

  36. Summary Benefits for Organizations– Cyberoam SSL VPN • Reduced costs: Centralized management, minimum admin intervention, timely support • Protect your Investments: Use existing networks, firewalls, servers • Trusted Remote Access: Extend access to regional offices, partners, customers, telecommuters, wireless users • Continuous access: Provide reliable access 24X7 • Increase employee productivity (Intranet portals, ERP) • Partner access to internal applications (Partner Extranet) • Eliminate risks of organizational resource access from cyber cafes, customer site etc. • Apply Uniform security policy

  37. Cyberoam SSL VPN Virtual Appliance Free Trial… • Register for a free online trial • A fully functional Cyberoam product • Free technical support • No financial obligations

  38. Question/Answer Session

  39. Please visit us at www.secureone.com.my Thank You

More Related