IPSec VPN Features and Benefits
Interoperable IPSec VPN Implementation.
SonicWALL VPN is based on the
IPSec standard for VPN, so it's compatible
with other VPN products with the same IPSec implementation, such as Check
Point Firewall-1, Cisco PIX, Nortel Contivity and Axent Raptor.
Seamless Support of Windows
Networking.
VPN tunnels
between two appliances can pass Windows Networking broadcasts, which support
Windows Network Neighborhood. Users can then view both local and remote
network resources in the same Windows Network Neighborhood.
VPN Client for Secure Dial-Up Access.
The
SonicWALL Global VPN Client allows your organization
to include dial-up Internet users into the VPN. The Client supports Windows 95, 98, NT and 2000. The SonicWALL group VPN tunnel
feature simplifies deployment of VPN clients by allowing distribution of a
common VPN client configuration to remote users.
3rd Party Digital Certificate
Support
A digital certificate is an electronic means to
verify identity by a trusted third party known as a
Certificate Authority (CA). SonicWALL now supports third party
certificates in addition to the existing Authentication Service. The
difference between third party certificates and the SonicWALL Authentication
Service is the ability to select the source for your CA certificate.
DHCP Over VPN
In some network deployments, it is desirable to
have all VPN networks on one logical IP subnet, and create the appearance of
all VPN networks residing in one IP subnet address space. This facilitates
IP address administration for the networks using VPN tunnels.
DHCP over VPN is a feature that allows a Host (DHCP Client) behind a
SonicWALL to obtain an IP address lease from a DHCP server at the other end of
a VPN tunnel.
VPN Bandwidth Management
A VPN Security Associations can be
allocated bandwidth if
bandwidth management is enabled for
the SA.
NAT Traversal Support
VPN NAT Traversal is a feature designed to overcome
problems faced when IPSec traffic is intended to pass through a
NAT device. NAT Traversal addresses the
problem by wrapping an IPSec packet inside a UDP packet when a NAT or
NAPT (Network Address Port Translator) device is detected between peers.
Single-Arm Mode
Enables the SonicWALL security appliance to connect via the WAN interface
onto a subnet with an existing firewall and process all VPN traffic,
removing the burden of encryption/decryption from the Internet access
firewall. A dedicated SonicWALL VPN solution easily integrates with existing
firewalls, increases security policy enforcement through VPN tunnels, and
delivers flexible VPN options to customers of all sizes.
RIP Advertising
RIP Advertising dynamically advertises updated VPN and static routing
information to the internal network, reducing the risk of misroutes and
ensuring reliable connectivity to critical resources. Supports both RIPv1
and RIPv2.
AES Support
Support for
Advanced Encryption Standard (AES) encryption algorithm, the
next-generation encryption standard, and underlines SonicWALL’s commitment
to next-generation open security standards.
The
IPSec VPN feature provides secure, encrypted communication to business partners
and remote offices at a fraction of the cost of dedicated leased lines. Using
the SonicWALL's intuitive Web Management Interface, you can quickly create a
VPN
