|
Juniper Networks Netscreen Platforms
|
|
|
Juniper Networks Inc.
|
http://www.juniper.net
|
|
The Juniper Networks Firewall / IPSec VPN security devices are purpose-built to perform essential security functions.
These integrated devices combine a Stateful Inspection firewall with Deep Inspection technology for application-level
protection, IPSec virtual private networking (VPN) capabilities, and denial of service (DoS) mitigation functions.
Plus they are all manageable by a policy-based central management system, NetScreen-Security Manager. They are available
in a range of devices built to meet the throughput requirements of enterprises of all sizes.
* Complete line of firewall/VPN solutions for enterprises and service providers
* Strong firewall security for access control, user authentication, and network and application-level attack protection
* Lower capital investment, support, deployment, and operations costs, for overall lower TCO
* Predictable performance for a highly reliable, available, and secure network
|
|
Commercial
|
|
Information updated:
05 Apr 06
|
|
Juniper Networks Secure Access Platforms
|
|
|
Juniper Networks Inc.
|
http://www.juniper.net
|
|
Juniper Networks SSL VPNs lead the market with a complete range of SSL VPN appliances. Juniper's Secure Access products
have a variety of form factors and features that can be combined to meet the needs of companies of all sizes, from SMBs
that need access for remote/mobile employees to large global deployments that need to provide employee and extranet
access from a single platform. Juniper Networks SSL VPNs are based on the Instant Virtual Extranet (IVE) platform,
which uses SSL, the security protocol found in all standard Web browsers. The use of SSL eliminates the need for
client-software deployment, changes to internal servers, and costly ongoing maintenance and desktop support. Juniper
Networks SSL VPN Secure Access appliances combine the overall benefit of a lower total cost of ownership over traditional
IPSec client solutions, with unique end-to-end security features Enhanced access methods enable the enterprise to
provision access by purpose for virtually any resources, including those that are jitter or latency sensitive.
* Market-leading, single platform for employee and partner remote access
* Clientless access to enterprise applications and resources
* Best-in-class endpoint security, granular access control and threat prevention - and now, NEW coordinated threat control with Juniper Networks IDP
* Scalable appliances meet the remote and extranet access requirements of companies of all sizes
* Highly available and scalable offering for Service Providers
|
|
Commercial
|
|
Information updated:
05 Apr 06
|
|
Securepoint Security Suite 2006nx
|
|
|
Securepoint GmbH
|
http://www.securepoint.cc
|
|
To build a VPN - Virtual Private Network - various conditions have to be fulfilled. The authentication of the partner,
a standardised encryption as well as the access control and embeddening in the security structure of the company -
together they establish the favoured private network.
The build up of communication channels by means of an unitary technology as tunnel to the communication partner via
the Internet is a cost-effective possibility (approx. 3:1) compared to the previous solutions via user-to-user
connection/standard telephone line (Standleitung) respectively conventional dial-in-methods/dial-up connections
(Einwahlverfahren) (RAS-technology).
There are different encryption methods to choose from (Preshared, RSA, X.509-certificates). Basically they are
combinations of public and private modes and the choice what shall be encrypted. Encrytions are also offered in
combination with Securepoint Firewall Systems. Securepoint supports the VPN-standards PPTP and IPSec.
Securepoint VPN Server
- VPN IPSec Server (3DES)
- VPN PPTP Server
- Firewall to Firewall connections
- Firewall to Client connections (Securepoint, GreenBow, PGP, Microsoft)
- VPN IPSec Client
- IPSec Client Software: GreenBow
- IPSec with dynamic IP Support
- Preshared, RSA, X.509 Certificates
- Keying-retries and Startup Support
- IPSec and PPTP Reports
Also see the Securepoint
Security Appliance products.
|
|
Commercial
|
|
Information updated: 05 Apr 06
|
|
 |
|
Windows 2000, Windows XP, ISA Server, and Windows Server 2003
|
|
|
Microsoft Corporation
|
http://www.microsoft.com
|
|
VPN Server Support
Using Routing and Remote Access in Windows Server 2003, you can configure a VPN server that supports PPTP and L2TP/IPsec.
To configure a computer running Windows Server 2003 to act as a VPN server, do the following:
(detailed instructions skipped)
VPN Server Support in Windows XP
You can configure a computer running Windows XP as a remote access VPN server by running the Create a New Connection
Wizard in the Network Connections folder. On the Network Connection Type page of the wizard, click Set up an advanced
connection. On the Advanced Connection Options page, click Accept incoming connections. These options will cause the
computer running Windows XP to act as a VPN server. However, the server will support only a single remote access
connection (dial-up, PPTP, or L2TP/IPsec-based).
|
|
Commercial
|
|
Information updated: 06 Apr 06
|
|
Poptop - The PPTP Server for Linux
|
|
|
poptop.org
|
http://www.poptop.org
|
|
What is Poptop?
Before Poptop, no solution existed if you wish to connect PPTP clients to Linux servers. Using Poptop, Linux
servers can now function seamlessly in a PPTP VPN environment. This enables administrators to leverage the
considerable benefits of both Microsoft and Linux operating systems.
The current release version supports Windows 95/98/Me/NT/2000/XP PPTP clients and Linux PPTP clients.
Poptop is free software, licensed under the terms of the GNU GPL.
Features of Poptop include:
* Microsoft compatible authentication and encryption (MSCHAPv2, MPPE 40 - 128 bit RC4 encryption)
* Support for multiple client connections
* Seamless integration into a Microsoft network environment (LDAP, SAMBA) using RADIUS plugin
* Works with Windows 95/98/Me/NT/2000/XP PPTP clients
* Works with Linux PPTP client
* Poptop is, and will remain, totally free under the GNU General Public License
|
|
Free
|
|
Information updated: 06 Apr 06
|
|
Openswan
|
|
|
openswan.org
|
http://www.openswan.org
|
|
Openswan is an implementation of IPsec for Linux. It supports kernels 2.0, 2.2, 2.4 and 2.6, and runs on many
different platforms, including x86, x86_64, ia64, MIPS and ARM.
|
|
Open Source
|
|
Information updated: 06 Apr 06
|
|
|
|
OpenVPN - An Open Source SSL VPN
|
|
|
OpenVPN Solutions, LLC
|
http://openvpn.net
|
|
OpenVPN is a full-featured SSL VPN solution which can accomodate a wide range of configurations, including remote
access, site-to-site VPNs, WiFi security, and enterprise-scale remote access solutions with load balancing, failover,
and fine-grained access-controls.
OpenVPN is an Open Source project and is licensed under the GPL. Commercial licenses are also available for firms who
would like to redistribute OpenVPN with their own proprietary applications. Contact info@openvpn.net for more information.
OpenVPN runs on:
Linux, Windows 2000/XP and higher, OpenBSD, FreeBSD, NetBSD, Mac OS X, and Solaris.
With OpenVPN, you can:
* tunnel any IP subnetwork or virtual ethernet adapter over a single UDP or TCP port,
* configure a scalable, load-balanced VPN server farm using one or more machines which can handle thousands of
dynamic connections from incoming VPN clients,
* use all of the encryption, authentication, and certification features of the OpenSSL library to protect your
private network traffic as it transits the internet,
* use any cipher, key size, or HMAC digest (for datagram integrity checking) supported by the OpenSSL library,
* choose between static-key based conventional encryption or certificate-based public key encryption,
* use static, pre-shared keys or TLS-based dynamic key exchange,
* use real-time adaptive link compression and traffic-shaping to manage link bandwidth utilization,
* tunnel networks whose public endpoints are dynamic such as DHCP or dial-in clients,
* tunnel networks through connection-oriented stateful firewalls without having to use explicit firewall rules,
* tunnel networks over NAT,
* create secure ethernet bridges using virtual tap devices, and
* control OpenVPN using a GUI on Windows or Mac OS X.
|
|
distributed under the GPL license
|
|
Information updated: 06 Apr 06
|
|
StrongSwan - IPsec for Linux
|
|
|
strongSwan project
|
http://www.strongswan.org
|
|
Linux FreeS/WAN is an implementation of IPSEC & IKE for Linux.
IPSEC is Internet Protocol SECurity. It uses strong cryptography to provide both authentication and encryption
services. Authentication ensures that packets are from the right sender and have not been altered in transit.
Encryption prevents unauthorised reading of packet contents.
These services allow you to build secure tunnels through untrusted networks. Everything passing through the
untrusted net is encrypted by the IPSEC gateway machine and decrypted by the gateway at the other end. The
result is Virtual Private Network or VPN. This is a network which is effectively private even though it includes
machines at several different sites connected by the insecure Internet.
Our project's primary objective is to help make IPSEC widespread by providing source code which is freely available,
runs on a range of machines including ubiquitous cheap PCs, and is not subject to US or other nations' export restrictions.
|
|
Open Source
|
|
Information updated: 06 Apr 06
|
|
Aventail Smart SSL VPN
|
|
|
Aventail Corporation
|
http://www.aventail.com
|
|
Only Aventail® Smart SSL VPNs are able to provide complete application access with full security, control of the
end point, and unified policy management. Our appliances increase productivity by providing employees and business
partners with secure, clientless access to the resources they need from any device, anywhere. For IT departments,
our appliances deliver a lower total cost of ownership (TCO) by eliminating difficult IPSec VPN deployments and constant
support calls. At the same time, Aventail’s integrated collaboration tools for Web conferencing, VoIP communications,
and remote helpdesk can enable further cost savings, eliminating the need for multiple solutions.
All Aventail® Smart SSL VPN appliances are based on the Aventail® ST platform. Aventail ST provides everywhere access
from all Internet, wireless, and mobile devices for greater productivity, security and manageability.
Our patent-pending Aventail® Smart Tunneling™ technology enables a Layer 3 network connection over SSL, offering
users complete and secure access to corporate resources. Because Smart Tunneling offers a closed tunnel by default,
Aventail Smart SSL VPNs offer far greater security than traditional IPSec solutions or other SSL VPNs.
|
|
Commercial
|
|
Information updated: 06 Apr 06
|
|
|
|
NetMAX VPN Server Suite 5
|
|
|
Cybernet Systems Corporation
|
http://www.netmax.com
|
|
NetMAX VPN Server Suite 5 simplifies Linux servers by installing a ready-to-configure network security solution
consisting of a Virtual Private Network (VPN) server, firewall, router, and proxy/cache server, along with the Linux
operating system. NetMAX Network Server Software provides small/medium sized businesses and enterprise workgroups easy
use of a browser-based administration and pre-configured suite of applications, along with the strength and reliability
of Linux.
Run a Virtual Private Network in just a few easy steps - NetMAX Network Server Software installs quickly and easily in as
little as 15 minutes.
Mask the complexities of Linux - The browser-based interface enables users to run Linux without previous Unix experience.
NetMAX Network Server Software is designed to simplify complex network administration tasks. Running your server is as
easy as browsing the web - just point and click.
Includes and installs all necessary software - NetMAX VPN Server Suite 5 includes and installs a browser-based graphical
interface, the VPN server, NetMAX FireWall ProSuite 5 (including a firewall, router, and proxy/cache server), and the
Linux operating system based on a distribution of Red Hat® Linux. All services are preconfigured and integrated into
both NetMAX Servers. No other software is required.
Choose the best hardware for your system - NetMAX VPN Server Suite 5 provides software-only solutions for computers using
the Intel®-based architecture, giving you the flexibility to choose or upgrade to the most appropriate type of hardware
to run your server.
Quickly configure a standards-based VPN - NetMAX VPN Server Suite 5 allows you to use the public Internet to connect to
remote offices, your customers, or your suppliers, avoiding the cost of expensive private leased lines. The Suite
browser-based interface eases VPN configuration and management. NetMAX VPN Server Suite 5 includes robust Triple Data
Encryption Standard (3DES) 168-bit encryption using the IPSec standard security protocol and X.509 certificate
management, ensuring that your information remains private, while being able to communicate with other IPSec-based
VPN clients and servers.
Features
* IPSec-compliant
* Encapsulating Security Payload (ESP)
* Gateway-to-Gateway and Network-to-Network
* Client-to-Gateway and Client-to-Network
* Remote Telecommuter Client-to-Gateway and Client-to-Network
* Authentication via Pre-shared Secrets and X.509 Certificates
* Complete Certificate Authority Management
* IP Masquerading (NAT) rules automatically generated
* Includes and installs a version of Red Hat® Linux
|
|
Commercial
|
|
Information updated: 06 Apr 06
|
|
Kerio WinRoute Firewall
|
|
|
Kerio Technologies, Inc.
|
http://www.kerio.com
|
|
For all business people traveling or working from home, connecting securely to the corporate network is simply an
essential part of their life. With Kerio WinRoute Firewall, setting up a Virtual Private Network is almost effortless.
The Kerio VPN Server and Kerio VPN Client are an integral part of Kerio WinRoute Firewall secure remote access capabilities.
Using Kerio's VPN allows people to remotely connect to the IT resources such as file servers, database servers or even
printers that are otherwise hidden behind a firewall and inaccessible to anyone outside the company offices.
Kerio VPN Server - Kerio WinRoute Firewall's built-in VPN Server allows companies to setup VPN networks in two different scenarios:
* server-to-server VPN
* client-to-server VPN
Client-to-server uses Kerio VPN Client for Windows.
Server-to-server VPN
Server-to-server mode is useful for companies that want to securely connect their branch offices and share common
resources. This setup requires that a copy of Kerio WinRoute Firewall is running at each location to create a secure
tunnel over the Internet and connect the sites.
Client-to-server VPN
Client-to-server mode will allow remote workers to securely connect to the corporate network with their notebooks and
desktop PCs.
|
|
Commercial
|
|
Information updated: 06 Apr 06
|
|
Cisco IOS Easy VPN
|
|
|
Cisco Systems, Inc.
|
http://www.cisco.com
|
|
Cisco IOS IPsec functionality provides network data encryption at the IP packet level, offering a robust, standards-based,
security solution. IPsec provides data authentication and anti-replay services, in addition to data confidentiality
services. It is the only way to implement secure VPNs.
Customers can combine IPsec with other Cisco IOS Software functionality to build scalable, robust, and secure
Quality of Service-aware VPNs.
Cisco Easy VPN greatly simplifies virtual private network (VPN) deployment for remote offices and teleworkers. Based on
the Cisco Unified Client Framework, the Cisco Easy VPN solution centralizes VPN management across all Cisco VPN devices,
thus reducing the management complexity of VPN deployments. Cisco Easy VPN solution helps enable an integration of VPN
remote devices--such as Cisco routers, Cisco PIX Security Appliances, the Cisco VPN 3002 Hardware Client, or the Cisco
VPN Client--within a single deployment and with a consistent policy and key management method, which simplifies
remote side administration.
Cisco Easy VPN consists of two components: Cisco Easy VPN Remote and Cisco Easy VPN Server. The Cisco Easy VPN Remote
feature allows Cisco IOS routers, Cisco PIX Security Appliances, Cisco VPN 3002 Hardware Clients and the Cisco VPN Client
to receive security policies upon a VPN tunnel connection from a Cisco Easy VPN Server, minimizing configuration
requirements at the remote location. This cost-effective solution is ideal for remote offices with little IT support
or for large customer premises equipment (CPE) deployments where it is impractical to individually configure multiple
remote devices. This feature makes VPN configuration as easy as entering a password, which minimizes local IT support,
increases productivity, and lowers costs.
The Cisco Easy VPN Server allows Cisco IOS routers,
Cisco PIX Security Appliances, and
Cisco VPN 3000 Concentrators to
act as VPN head-end devices in site-to-site or remote-access VPNs, where the remote office devices are using the Cisco
Easy VPN Remote feature. This feature pushes security policies defined at the central site to the remote VPN device,
helping to ensure that those connections have up-to-date policies in place before the connection is established.
Additionally, a device enabled with the Cisco Easy VPN Server can terminate VPN tunnels initiated by mobile remote
workers running the Cisco VPN Client software on PCs. This flexibility allows mobile and remote workers to access
critical data and applications on their corporate intranet.
Cisco Easy VPN Remote is now available on Cisco 800, 1700, and UBR900 Series routers, Cisco PIX 501 and 506E Security
Appliances, and Cisco VPN 3002 Hardware Clients. The Cisco Easy VPN Server is available on numerous Cisco VPN routers
including the Cisco 1700, 7200 Series routers with Cisco IOS release 12.2(8)T, Cisco PIX Security Appliances, and all
Cisco VPN 3000 Concentrators.
Also see the
Cisco IPSec VPN Services Module, which is a high-speed module for the Cisco Catalyst 6500 Series Switch
and the Cisco 7600 Series Internet Router that provides infrastructure-integrated IPSec VPN services to meet the need
for ubiquitous connectivity and increased bandwidth requirements.
|
|
Commercial
|
|
Information updated: 06 Apr 06
|
|
|
|
Secure VPN Server Suite
|
|
|
Guardian Digital Inc.
|
http://www.guardian digital.com
|
|
The Guardian Digital Secure VPN Suite is a powerful Virtual Private Network solution for business operations on
the Internet. Combined with a lightweight network intrusion detection system, organizations can protect their
corporate online assets while monitoring network activity.
Connect branch offices or hundreds of remote office workers quickly and securely to the corporate headquarters using
the latest encryption and authentication technologies. Monitor Internet activity and watch for cybervandals using the
integrated network intrusion detection system. Graphical reports track current activity, providing administrators
critical information on a potential network compromise.
Leveraging standards-compliant technologies including IPsec and PPTP, the Secure VPN Suite also integrates well into
existing environments. Build secure VPN connections for remote office workers or distant branch offices using secure
Web-based management interface.
Secure VPN Server Suite Benefits Summary:
* Secure Remote Access for Branch Offices & Mobile Users
* Compatibility with Popular Clients and Applications
* Industry-standard Encryption and Security Features
* Multiple Authentication Mechanisms
* Data Compression for Low-speed Connections
* Sophisticated Web-based Management System
* Engineered to be Secure
* Consistently Secure and Updated with Guardian Digital Secure Network Services
* Flexible, Versatile & Resilient Open Source Architecture
* Cost-effective, Significantly Reduce IT & Support Costs
* Comprehensive Support Services
|
|
Commercial
|
|
Information updated: 06 Apr 06
|
|
Wolverine Firewall and VPN Server
|
|
|
Vortech Consulting, LLC
|
http://www.coyotelinux.com
|
|
This product is a commercial grade firewall and VPN solution, designed for use by any size organization. Wolverine
offers features found in many, much more expensive products such as the Cisco PIX, Watch Guard FireBox, and GTA's Gnat Box.
Features:
* Stateful packet inspection
* IPSEC VPN Support with support for DES, 3DES, AES-128, AES-256, and Twofish, encryption with MD5, SHA1, and
SHA2 authentication digests.
* Meets HIPAA guidelines for VPN cipher strength
* PPTP VPN with MSCHAPv2 authentication and MPPE-128 encryption support.
* Easy integration of PPTP VPN with existing Windows 2000/2003 Active Directories for user authentication. **
* Static IP, DHCP, and PPPoE configured external connection support.
* Web administration front end.
* MAC address spoofing
* Built-in DHCP server for SOHO environments.
* X.509 certificate support for remote IPSEC endpoint authentication.
* Hardened system kernel based on Linux 2.6.10
* Designed from the ground up for use as a firewall and VPN server. Wolverine is not based on any other
distribution of Linux.
* Very small installation footprint. Wolverine can be installed in as little as 8Mb of disk storage. A total of 32Mb of storage is
needed to use the internal update features.
* Remote event logging to an external syslog server.
* Transparent (bridging) or routing firewall support.
* Universal Plug and Play (UPnP) support
* 802.1q VLAN support **
|
|
Commercial
|
|
Information updated: 06 Apr 06
|
|
|
|
10/100 4-port VPN Router
|
|
|
LinkSys/Cisco Systems
|
http://www.linksys.com
|
|
The Linksys 10/100 4-Port VPN Router is an advanced Internet-sharing network solution for your small business needs.
Like any router, it lets multiple computers in your office share an Internet connection. But the unique dual Internet
ports on the 10/100 4-Port VPN Router let you connect a second Internet line as a backup to insure that you're never
disconnected. Or, use both Internet ports at the same time, and let the router balance your office's requirements
between them for maximum bandwidth efficiency.
The Virtual Private Network (VPN) capability creates encrypted "tunnels" through the Internet, allowing up to 30
remote office or traveling users to securely connect into your office network from off-site. Users connecting through
a VPN tunnel are attached to your company's network -- with secure access to files, e-mail, and your intranet -- just as
if they were in the building. You can also use the VPN capability to allow users on your small office network to securely
connect out to a corporate network.
Also see the
8-port model, the
16-port model,
EtherFast Cable/DSL VPN Router with 4-Port 10/100 Switch,
and the
Wireless-G VPN Broadband Router.
|
|
Commercial
|
|
Information updated: 06 Apr 06
|
|
InJoy Firewall
|
|
|
F/X Communications
|
http://www.fx.dk
|
|
Transparent, standards-based cross-platform unified IPSec technology, extends the InJoy Firewall™ with capability of
building VPN's and secure channels — allowing corporations to deploy it either as a VPN Gateway or as a secure VPN Client.
InJoy IPSec™ includes all the latest features and a comprehensive palette of business-ready protocols:
* High-grade encryption standards, including U.S. government adopted AES (Advanced Encryption Standard), 3DES,
Blowfish, DES and NULL encryption.
* Powerful Authentication through Pre-Shared Keys (PSK), Extended Authentication (X-Auth), RSA signatures and
Group Authentication. Password prompting supported to avoid storing of passwords on the harddisk.
* Nat Traversal facilitates easy IPSec deployment over NAT connections.
* IP Compression delivers maximum bandwidth through LZS or DEFLATE compression.
* Dynamic IP (Road Warrior) Support allows you to accept IPSec connections from hosts whose IP addresses
you do not know in advance.
* Split tunneling allows a host to maintain tunneled VPN communications with other hosts in the VPN while at the
same time communicating with public Internet hosts directly, outside the tunnel. This reduces both processing and
traffic overhead on the private network.
* Virtual IP allows the VPN administrator to assign an internal (virtual) IP address to any IPSec client to unify
the internal IP address range.
* Fail-over and Fall-back allows InJoy IPSec to "fail-over" to another VPN Server when the primary one fails,
and then "fall-back" to the primary VPN Server when it starts working again.
* Wide protocol support, including manual and automatic key exchange, tunnel and transport mode, main-mode
and aggressive mode.
|
|
Commercial
|
|
Information updated: 06 Apr 06
|
|
Mac OS X Server
|
|
|
Apple Computer Inc.
|
http://www.apple.com
|
|
Robust networking services in Mac OS X Server make it a snap to set up and manage your IP infrastructure, including
the latest versions of DNS, NAT, DHCP, NTP, Firewall and VPN.
Mac OS X Server is built on open, standards-based protocols and the latest in network security standards to increase
the performance and security of your server deployments. Using time-tested BSD sockets and TCP/IP stack, this advanced
networking architecture ensures compatibility and integration with IP-based networks. And for small operations just
getting started, the new Gateway Setup Assistant provides an intuitive interface for configuring secure network services.
Gateway Setup Assistant
Perfect for small offices and home offices, the new Gateway Setup Assistant enables you to set up complex services in just
a few clicks. Simply connect a network cable from your server to your DSL or cable modem and another cable from your network
to your server. Run the Gateway Setup Utility to automatically configure the server as a router, configure DHCP and VPN
address ranges, enable DHCP and NAT, configure firewall rules and enable DNS caching.
VPN Server
Mac OS X Server includes VPN support for Mac OS X, Windows and UNIX/Linux clients using Point-to-Point Tunneling Protocol
(PPTP) and Level-2 Tunneling Protocol (L2TP/IPSec). It also includes support for strong authentication for VPN using
MS-CHAP and IPSec or third-party solutions like SecureID. Encryption using PPTP is 40 and 128bit, L2TP uses IPSec.
|
|
Commercial
|
|
Information updated: 07 Apr 06
|
|
|
|
VPN Gateway and Routers
|
|
|
Nortel Networks
|
http://www.nortel.com
|
|
Nortel’s VPN Gateway portfolio is a remote access security solution that extends the reach of enterprise applications
to remote employees, partners, and customers. By leveraging the native capability of widely deployed SSL enabled Web
browsers, while also supporting traditional IPsec VPN access, Nortel’s VPN Gateway offers the industries most flexible
and cost effective secure remote access solution on the market today.
Please see the VPN Gateway
3050 and
3070 models.
Nortel VPN Routers provide routing, IPsec and SSL VPN, firewall, bandwidth management, encryption, authentication, and
data integrity for secure connectivity across managed IP networks and the Internet. Nortel VPN Routers connect remote
users, branch offices, suppliers, and customers with the cost and performance advantages of public IP networks and the
security and control found in private networks.
Please view the list of
Nortel VPN Router products.
Nortel VPN customers can now extend SSL VPN access to their existing IPsec VPN based deployments. This capability is
enabled with the new
SSL VPN Module 1000 and 5.0 server release deployable in the Nortel VPN Router 1740, 2700 and 5000
platforms.
|
|
Commercial
|
|
Information updated: 07 Apr 06
|
|
iPig Server Express and Server Pro
|
|
|
iOpus GmbH
|
http://www.iopus.com
|
|
Whenever you use an internet connection in a public or publically accessible place, you put your data at risk. The
internet connection may be a free or commercial Wi–Fi hotspot, an Ethernet network jack in your hotel room, or a
network drop in the office you’re visiting. All data you send can be intercepted easily and quickly by persons
unknown, without your knowledge. Your data may be your email usernames and passwords, your emails, Instant Messages,
web passwords, and all the web pages you visit.
The solution: iOpus Private Internet Gateway (iPIG)
Using powerful 256-bit AES encryption technology, the iOpus Private Internet Gateway (iPIG) creates a secure "tunnel"
that protects your inbound and outbound communications (Email, Web, IM, VOIP, calls, FTP, etc.) at any Wi-Fi hotspot or
wired network.
iPIG shields your data from even the most sophisticated methods of online spying and snooping like the "Evil twin
attackts". In addition, your sensitive information is not only protected between your computer and the wireless access
point you're using, but all the way to iOpus' secure connection servers deep in the Internet. This ensures that your
data can't be easily hijacked through the air and at the point it transitions to a "wired" Ethernet connection.
Unlike other technologies, iPig works with any kind of Internet connection (Wifi, WLAN, 802.11 a/b/g, wired ethernet)
and requires NO configuration of any kind. You just start your favorite web browser, email client or chat software and
switch the iPig encryption on: iPig grabs all Internet traffic before it leaves your PC and encrypts it securely! iPig
also works with all major firewall software like Zonealarm or Norton Internet Security. The software runs on Windows
2000, XP and 2003 (Sorry, Windows 98, ME are not supported).
Do you want to set up your own secure Internet endpoint? Instead of having the Pig client send all data to our secure
connection servers, you can set up your own secure connection servers. Just like the iPig client, the iPig Server is
extremly easy to install. All you need is a PC or Server with a permanet Internet connection.
The iPig Server Express Edition for up to 5 users is freeware.
Need more power? The iPig Server PRO Edition allows an unlimited number of users and connections (only limited by system
resources) and is available for only US$ 99.95. The PRO Edition also includes free upgrades and direct email support
for one year.
|
|
Freeware for up to 5 users, Commercial after that
|
|
Information updated: 07 Apr 06
|
|
Firewall/VPN Appliances and SSL-VPN Appliances
|
|
|
SonicWALL Inc.
|
http://www.sonicwall.com
|
|
SonicWALL's family of Internet security appliances provide the first line of defense against Internet security threats.
They include an ICSA-certified deep packet inspection firewall, IPSec VPN for remote access, IP address management
features and support for SonicWALL value-added security services.
Designed to increase security by reducing complexity, SonicWALL Internet security appliances eliminate the cost and
complexity of installing and managing separate devices and software packages for comprehensive security.
SonicWALL's comprehensive solutions make it easy for your organization to meet the challenges - and reap the benefits -
of telecommuting. SonicWALL's innovative technology seamlessly extends corporate-level security and privacy all the way
out to your telecommuters, regardless of their home networking environments. This gives you the control you need over
all remote access points, and ensures the security of your company's network. And for the laptop mobile computing,
SonicWALL's Global VPN Client secures connections for employees requiring secure access to business-critical network
resources from various locations. Our award-winning Global Management System (GMS) provides control over widely
distributed networks and can scale to accommodate enterprise growth objectives while easily managing and reporting on
remote access locations.
SonicWALL Internet security appliances offer the performance, reliability, and availability that businesses need to
communicate. Traditional site-to-site connections require companies to lease expensive, dedicated data lines that are
difficult to deploy and manage. With the advent of affordable broadband and standards-based VPN, organizations can
deploy secure remote access via ubiquitous Internet connections. With today's VPN technology and broadband connections,
companies of any size use the Internet to securely communicate with their multiple locations.
The
SonicWALL SSL-VPN Series, featuring the SSL-VPN 200 and SSL-VPN 2000, provides organizations of all sizes with an
affordable, simple and secure clientless remote network and application access solution that requires no pre-installed
client software. And, unlike solutions that charge a per-tunnel licensing fee, SonicWALL SSL-VPN solutions have no
restrictions on the number of concurrent user tunnels, allowing organizations to scale their remote access connectivity
as they grow.
|
|
Commercial
|
|
Information updated: 07 Apr 06
|
|
|
|
Novell BorderManager
|
|
|
Novell
|
http://www.novell.com
|
|
You're not alone: network security remains a top priority for organizations worldwide. To safeguard your network
against internal and external threats, you need Novell® BorderManager® 3.8. Strong and reliable, Novell BorderManager
includes firewall and VPN technologies that protect networks and resources, while ensuring end-user productivity.
Features
From firewall and VPN functionality to Internet access control and content filtering, Novell BorderManager offers an
array of features to protect your network and its resources. Specifically, Novell BorderManager does the following:
* Secures remote access to network resources
* Provides IPsec-based VPN services
* Works with IPsec-certified products
* Supports open standards (including LDAP)
* Supports advanced authentication
* Offers browser-based administration
* Includes Novell Client Firewall 2.0
* Supports key content-filtering solutions
* Provides firewall services (certified by ICSA Labs)
* Leverages NICI, a FIPS-140 validated encryption engine
Benefits
With Novell BorderManager, your organization can do the following:
* Protect network resources and data
* Deliver secure network access to remote users
* Ensure employee productivity
* Block undesirable Internet content
* Leverage existing infrastructure
* Reduce costs by optimizing bandwidth use
* Avoid liability exposure
Using Novell BorderManager, you can protect your resources, improve productivity and significantly reduce costs.
Other Novell Security and Indentity services—including provisioning, Web access management and single sign-on—are also
available to help you create a comprehensive secure identity management solution for your entire organization.
Also see the
Novell Security Manager, powered by Astaro.
|
|
Commercial
|
|
Information updated: 07 Apr 06
|
|
Fortinet FortiGate Systems
|
|
|
Fortinet Solutions
|
http://www.fortinet.com
|
|
Fortinet's advanced VPN solutions meet the price/performance requirements of any-sized enterprise. Fortinet's VPN
offers secure and cost-effective alternatives to expensive, low-bandwidth Frame Relay circuits to connect multiple
offices across the public Internet. FortiManager™ centralized VPN management appliance provides the ability to mange
thousands of FortiGate systems from a single console. Tightly integrated with Fortinet's application security
protection, Firewall, Antivirus, and IPS, Fortinet provides the most secure VPN solution available in the market today.
VPN Accelerated:
* ASIC accelerated VPN
* IKE: Pre-shared Key, Certs, Manual Keys
* Extensive user authentication, RADIUS< LDAP, Local Database, SecureID, X-Auth support for IPSec Clients
* IPSec, SSL, L2TP, and PPTP
* VPN content inspection - Antivirus, IPS, URL Filtering
* Hub-and-spoke configuration
* FIPS 140-2 certified
* Traffic shaping prioritizes traffic across VPNs
Enterprise Remote Office and partner Extranet VPN - Deployed in parallel with an existing firewall, a FortiGate VPN
gateway terminates VPNs from branch offices and extranet partners that require limited access to DMZ servers. With the
FortiGate systems integrated security features, the administrator can configure granular security policies to control
access to resources on the corporate LAN and DMZ.
Enterprise Hub-and-Spoke VPN - Hub-and-Spoke VPN configurations allow multiple remote sites to connect together without
having dedicated tunnels to each site. An ideal application for this design is to transport VoIP traffic across the VPN's
to reduce long-distance toll charges. Fortinet's traffic shaping features ensures VoIP traffic receives priority even
through a VPN tunnel.
MSSP: Virus-Free managed VPN Service - Taking advantage of Fortinet's integrated antivirus protection, managed service
providers can deliver the industry's most secure VPN service by enabling Fortinet's advanced antivirus engine to block
incoming and outgoing VPN traffic that contains viruses, worms, trojans, spyware and other malicious content to prevent
virus outbreaks from spreading from office to office. As an added benefit, Fortinet's flexible VPN architecture allows
for interoperability with most IPSec VPN gateways. Regardless of the VPN CPE the customer has in place, the FortiGate
system deployed at the core will ensure virus-free VPN traffic.
Enterprise Remote Access (IPSec and SSL) - Ideal for roaming users such asa remote salespeople needing secure access
to resources on the corporate LAN such as email and intranet resources. Fortinet offers both a secure IPSec client
(FortiClient™) and clientless SSL VPN for hotspot access in areas where IPSec may be blocked by a firewall. Strong
authentication is enforced users can establish VPN session.
|
|
Commercial
|
|
Information updated: 07 Apr 06
|
|
RedHat8 PptpServer
|
|
|
Phil Hollenback
|
http://www.hollenback.net
|
|
Turn your RedHat Linux machine into a Windows VPN Server.
|
|
freeware
|
|
Information updated: 07 Apr 06
|
|
|
|
intY ExoServer
|
|
|
intY Ltd.
|
http://www.inty.com
|
|
The intY ExoServer family of products meets the requirements of small to medium-sized businesses, offering secure
email and internet access for your staff and locations. With advanced access controls and security, the intY ExoServer
takes only a few hours to install and features an easy-to-use management interface.
You will also enjoy the ongoing support of our expert technicians, so you can feel confident your business will benefit
from consistently dependable email and internet access.
Here is an overview of the services and features present in every intY ExoServer:
Email server
Access controls
Firewall
Web cache
NT integrator
Virtual Private Network (VPN) - With the intY ExoServer, you can connect your offices and remote workers using a
Virtual Private Network (VPN). A VPN allows your employees to connect to the network over the internet. This means
they can work, share files and collaborate from anywhere in the world.
Intranet/extranet server
Support services
|
|
Commercial
|
|
Information updated: 07 Apr 06
|
|
Firebox SSL VPN
|
|
|
Watchguard Technologies, Inc.
|
http://www.watchguard.com
|
|
Firebox® SSL VPN Gateway is designed for businesses that need to provide secure, always-on connectivity to
applications and corporate resources for up to 205 concurrent remote users. It provides dependable, secure access
from anywhere, anytime, with no complex reconfiguration, custom application connectors, or development work.
Deployment and management are streamlined for the IT administrator, while users experience unmatched ease of use.
Firebox® SSL VPN Gateway provides:
* Complete network access
* Support for most applications
* Support for major protocols
* Always-on capability/persistent connection
* Built-in endpoint security out of the box
* Continuously verifies endpoint security status
* Firewall compatibility: traverses most firewalls
* Two powerful access modes
* In-office user experience
* Clientless access from anywhere through Web-enabled devices
* Application-level access control
* Blocking of worm traversal
* Built-in desktop sharing
* Simple setup and maintenance
* 90-day renewable LiveSecurity® Service subscription
Also see the VPN Endpoint and site-to-site capabilities in the Firebox X
Edge,
Core, and
Peak product lines.
|
|
Commercial
|
|
Information updated: 07 Apr 06
|
|
Astaro Security Gateway
|
|
|
Astaro Corporation
|
http://www.astaro.com
|
|
ICSA and Common Criteria certified, Astaro Security Gateways are ready for deployment in large,
mid-size and small IT environments.
Features - All Astaro Security Gateway models feature full network protection, web filtering, and
email security capabilities:
Network Protection - Firewall and IPS, SSL & IPSec VPN, Bandwidth Optimization
Web Filtering - Content Filtering, Anti Virus and Spyware, IM and P2P Control
Email Security - Anti Spam and Phishing, Dual Anti Virus, Email Encryption
Security Management - Easy User Interface, 1-Click Internet Updates, Hot Standby & Clustering
|
|
Commercial
|
|
Information updated: 22 June 07
|
|
|
|
Netopia 4500 and 4600 Series Routers
|
|
|
Netopia Inc.
|
http://www.netopia.com
|
|
4500 Series Routers
The 4500 Series business-class routers are designed for cost-effective broadband connectivity using a variety of
WAN options including ADSL, SHDSL, SDSL, IDSL, and T1. Ideal for the needs of small and medium enterprises and
teleworkers, the 4500 Series combines powerful routing features, built-in VPN capabilities, and enterprise-class
management tools into a single, all-in-one device.
4600 Series Routers
The 4600 Series business-class routers combine hardware-based VPN acceleration, built-in software VPN features, an
Ethernet switch, and powerful routing and management tools in a single, all-in-one device. Designed for the needs o | |
