Posted by: Anonymous Coward
on September 28, 2005 09:35 PM
Dear Charlie Hosner,
i fully agree with nearly every concerns you bring up here - the only thing i have to disagree is, that no commercial product is able to address those concerns. Of course none of the so called Web VPNs from Cisco Checkpoint etc. are able to offer a full Tunnel functionality - but if you look at Aventail (which is regarding to Gartner, Forrester, Frost etc. the technical market leader) then you will see that they offer everything you wanted to have : A full Tunnel Access (including Crossconnect and Backconnect possibility)invoked only by a browser and a couple of Appletts Bidirectional Traffic Control inside the Tunnel Full Control of the accessing Endpoints - Different Levels of Access per Access Zone Data Protection mechanisms like Cache Control if you access from a foreign Browser Cross platform support and and and...
Of course, if you need a quick replacement for an IPSec in an small to medium environment, and if you dont need access without installing a Client then OpenVPN is an ideal(and very cool!) Solution.
But if you have Enterprise needs then you should seriously look for an Aventail<nobr> <wbr></nobr>;-)
Learn about Linux
Download Linux
Get Linux help
SSL VPNs and OpenVPN
Posted by: Anonymous Coward on September 28, 2005 09:35 PMi fully agree with nearly every concerns you bring up here - the only thing i have to disagree is, that no commercial product is able to address those concerns.
Of course none of the so called Web VPNs from Cisco Checkpoint etc. are able to offer a full Tunnel functionality - but if you look at Aventail (which is regarding to Gartner, Forrester, Frost etc. the technical market leader) then you will see that they offer everything you wanted to have :
A full Tunnel Access (including Crossconnect and Backconnect possibility)invoked only by a browser and a couple of Appletts
Bidirectional Traffic Control inside the Tunnel
Full Control of the accessing Endpoints -
Different Levels of Access per Access Zone
Data Protection mechanisms like Cache Control if you access from a foreign Browser
Cross platform support and and and...
Of course, if you need a quick replacement for an IPSec in an small to medium environment, and if you dont need access without installing a Client then OpenVPN is an ideal(and very cool!) Solution.
But if you have Enterprise needs then you should seriously look for an Aventail<nobr> <wbr></nobr>;-)
regards
Volker Marschner
#