Hassle-Free, Universal Access - Without Compromising Security

Firebox® SSL VPN Gateway is designed for businesses that need to provide secure, always-on connectivity to applications and corporate resources for up to 205 concurrent remote users. It provides dependable, secure access from anywhere, anytime, with no complex reconfiguration, custom application connectors, or development work. Deployment and management are streamlined for the IT administrator, while users experience unmatched ease of use.

Firebox® SSL VPN Gateway provides:

• Complete network access
• Support for most applications
• Support for major protocols
• Always-on capability/persistent connection
• Built-in endpoint security out of the box
• Continuously verifies endpoint security status
• Firewall compatibility: traverses most firewalls
• Two powerful access modes
• In-office user experience
• Clientless access from anywhere through Web-enabled devices
• Application-level access control
• Blocking of worm traversal
• Built-in desktop sharing
• Simple setup and maintenance
• 90-day renewable LiveSecurity® Service subscription

How the Firebox® SSL Solution Compares to Others
Whether you're already considering an alternative to IPSec VPN tunnels or just beginning to think about how to set up remote access for your employees, here's what you need to understand to make the right decision. When is SSL VPN a better choice than IPSec VPN?

How it works
The Firebox® SSL VPN solution gives users anywhere access by providing two powerful access modes in one solution to extend the network's reach. In Secure Access client mode, users can work with client/server applications, file servers, printer servers, and other network resources just as they would when connected to a LAN. In Kiosk mode, they can access Web applications, as well as additional supported applications, from Web-enabled devices no matter where they are.

Sample Firebox® SSL VPN Deployment

Firebox SSL VPN Gateway Delivers

Dependable, Universal Access
Overcomes the access limitations of other SSL VPN solutions, giving you two powerful access modes in one solution to extend your network's reach.

• Secure Access client mode
  Authorized users connect using an auto-updating, Web-deployed client for an in-office experience.
  • Users access applications and network resources just as they would when connected to the LAN
  • Provides client failover capabilities, to keep remote connections always up and running
• Kiosk mode
  Authorized users can access Web-based and supported applications from Web-enabled devices whose browsers support SSL in Java™ or Microsoft® Windows® environments.

Regardless of the mode used, Firebox® SSL VPN Gateway traverses most firewalls and supports major operating systems and protocols including TCP.

Powerful Security
Firebox® SSL Core™ VPN Gateway provides robust security from the access device to the network, from managed and unmanaged devices.

• Continuously verifies endpoint security status when allowing network access, by checking device attributes including IP address, firewall settings, operating system, patch level, and status of antivirus software
• Encryption: Session length of 128 bit and 168 bit, RC4, DES, and 3DES ciphers, supporting MD5, SHA1, SSL v3, TLS v1
• Hides IP addresses of remote network to block worm traversal
• Session timeout protects corporate information from unauthorized users
• Kiosk mode sessions transmit images, not data, so no cache cleaning is required
• Additional security capabilities, including support for two-factor authentication and authorized digital certificates, alleviate security concerns for extending network access
• Can be deployed with a Firebox® X Unified Threat Management security appliance to add protection from network, application, and content-based attacks

Strong Administrative Control
IT administrators can quickly deploy and manage user and group access from a single centralized location with integrated logging and reporting.

• Assign access policies for users and groups with robust authentication support including Radius, Windows® Domain, and RSA SecurID®
• Control which devices gain network access through built-in endpoint security checks
• Use advanced networking functions including IP pooling, optional split tunneling, load balance support and dynamic or static routing to provide the flexibility needed for evolving network topologies

Unmatched Ease of Use
Get robust, secure access out of the box without additional costs, reconfiguration, development work, or administrative headaches to get up and running fast and stay that way.

• No additional components, adapters, or special application connectors are required to get universal network and application access
• No client installation, maintenance, or support is needed - the client is automatically updated whenever the user connects to the network

Lower Total Cost of Ownership
Organizations realize tremendous cost savings with:

• No additional adapters, application connectors, or complex network reconfiguration
• Automatic client installation - no ongoing administration required
• Intuitive interfaces for IT administrators that greatly reduce time spent configuring and managing access policies
• Built-in desktop sharing for SSL-encrypted remote help desk support
• Comprehensive support package delivered by LiveSecurity® Service experts

Expert Guidance and Support
Firebox® SSL Core™ VPN Gateway is backed by WatchGuard's LiveSecurity® Service, the most comprehensive support and maintenance offering in the industry, providing:

• Up-to-the-minute security warnings
• Software updates
• Technical support
• Advance hardware replacement
• Training, tutorials, and self-help resources

 

Firebox Family Brochure