A relative newcomer to the world of SSL-based mostly faraway entry, F5 has been quick to take in and extend the FirePass VPN appliance technology it acquired, together with the long-established developer uRoam, returned in 2003.
essentially the most contemporary addition is the FirePass 600, which is aimed toward smaller businesses with as much as 25 far off users (£three,723 ex. VAT), while its larger brother, the 1U FirePass one thousand (£13,542 ex VAT), can cope with 100 clients at a time. The 2U FirePass 4100 reviewed right here, however, is awfully lots designed for tremendous organizations with non-compulsory hardware-based SSL acceleration and clustering that can prolong this to 2,000 clients or extra.
The net-primarily based administration interface is plenty the same on all three products, and despite the fact fairly easy, it does take a while to become familiar with. moreover, besides the fact that children F5 claims a 30 minute installation time, in observe that simplest offers you a primary setup with additional time essential to tailor the a number of entry and safety options and customise the end person interface.
And there in reality is plenty to familiarize yourself with here. To beginning with, faraway entry can be managed at a bunch or individual degree with a choice of authentication programs together with an interior database, lively directory, LDAP or RADIUS. There’s guide for 2-factor authentication (equivalent to SecurID), and endpoint programs can also be checked for protection compliance before entry is allowed.
On the draw back, the compliance tests aren’t as complete as with some rival items, but there are facilities to look for specific provider pack updates, registry settings and virus infections. Failing methods can also be quarantined and, usefully, redirected to download the fundamental updates instantly. youngsters, the requirement for a shopper-aspect virus scanner is restricted to McAfee software handiest.
As with most SSL appliances, FirePass employs a mix of applied sciences to supply authenticated users with entry to network purposes and elements. And it does so without the need for a customized VPN client. really, for the most half all that’s crucial is an SSL-enabled browser that allows you to, typically, be internet Explorer (however they used Firefox and Opera with decent results). Small-structure handheld devices are also supported, in addition to both windows and Linux purchasers.good ZDNET experiences
access to net-enabled applications is consolidated the usage of a customisable portal, while AppTunnels can also be configured to hyperlink to common TCP/IP applications. An ActiveX handle is instantly downloaded to support this and other connectivity options, with automatic removal and cache cleanup when accomplished. There’s a Java-based option for situations the place ActiveX isn't allowed, and it’s possible to pre-deploy the software on purchasers where computing device settings are locked down.
a wide range of applications can even be dealt with the use of pre-configured connectors, giving access to products like trade, Citrix and legacy terminal emulators. access to home windows file shares and Novell and NFS servers additionally comes as normal; these and different alternatives are configured using the equal graphical policy editor on the FirePass appliance. faraway computing device help is an non-compulsory additional, if required; different points value noting consist of a developed-in firewall and split-tunnelling of customer traffic to further offer protection to the community from backdoor attacks.
efficiency is an important difficulty with this classification of product and relies upon usually on the number of clients and the specification of the FirePass hardware. Hardware-based mostly SSL acceleration is essential for colossal-scale use and is developed into the F5 equipment, besides the fact that children you do must pay further to activate it.
We had been impressed with what the FirePass equipment has to offer, and F5 has definitely moved immediately to set up a presence in the burgeoning SSL far off entry market, with items now purchasable to suit a wide array of needs. however, competition is fierce and simplest time will inform if this huge-based mostly approach will be triumphant.