X.COMM Home
 
X.COMM Home
Products
Internet Connectivity
Firewall VPN
Enterprise
Corporate
Small Office
SSL 'Clientless' VPN
Enterprise
Small Business
Strong Authentication
Client Security
Email Security
Global Roaming
Bandwidth Optimisation
Faxing
Vendors
Legacy Products
Services
Support
About Xcommunications
Request Information
Site Map
Search this Site
Juniper networks SSL VPN for large Organisations

JUNIPER NETWORKS SSL VPN - SECURE ACCESS

Juniper Networks SSL VPNs are based on the Instant Virtual Extranet (IVE) platform, which uses SSL, the security protocol found in all standard Web browsers. The use of SSL eliminates the need for client-software deployment, changes to internal servers, and costly ongoing maintenance and desktop support. Juniper Networks SSL VPN Secure Access appliances combine the overall benefit of a lower total cost of ownership over traditional IPSec client solutions, with unique end-to-end security features. Enhanced access methods enable the enterprise to provision access by purpose for virtually any resource, including those that are jitter or latency sensitive.

The following appliances supercede the Juniper Networks Netscreen SA2000, SA4000 and SA6000 series as Juniper Networks continues to build on their market leading product set. Juniper Secure Access is the only SSL VPN to hold Common Criteria EAL2 accreditation and offer products meeting the US Government FIPS 140-2 level 3 certification. Juniper Secure Access offers a set of standard features and licence options.

   JUNIPER NETWORKS SECURE ACCESS 6500

Secure Access 6500 is designed for large enterprises, and features best-in-class performance, scalability, and redundancy for organisations with high volume secure access and authorisation requirements. The SA 6500 hardware platform is designed to scale to the largest enterprise deployments and optimise application delivery, with available options that include redundant hot swappable hard disks, power supplies and fans, as well as GBIC-based multiple Ethernet ports for redundant or meshed configurations. The SA 6500 also features a state-of-the-art SSL acceleration chipset to speed CPU-intensive encrypt/decrypt processes, as well as built in compression for all traffic. Each unit is scaleable from 100 to 2500 concurrent users with multi-unit clusters scaling to 12,500 concurrent users.
   JUNIPER NETWORKS SECURE ACCESS 4500

Secure Access 4500 enables mid-to-large sized organisations to provide cost effective remote and partner extranet access from any standard Web browser. The SA 4500 appliances feature rich access privilege management functionality that can be used to create secure customer/partner extranets with no infrastructure changes, no DMZ deployments, and no software agents. Built-in compression for all traffic types speeds performance, and SSL acceleration is available via a software license for more demanding environments. The SA 4500 Series is scaleable from 50 to 1000 concurrent users.
   JUNIPER NETWORKS SECURE ACCESS 2500

Secure Access 2500 enables small-to medium-sized organisations to deploy cost effective remote and extranet access, as well as intranet security. Users can access the corporate network and applications from any standard Web browser. Juniper’s Secure Access appliances also offer sophisticated partner/customer extranet features that enable controlled access to differentiated users and groups with no infrastructure changes, no DMZ deployments, and no software agents. This functionality also allows companies to secure access to the corporate intranet, so that administrators can restrict access to different employee, contractor or visitor populations, based on the resources that they need. The SA 2500 is scaleable from 25 to 100 concurrent users.

STANDARD FEATURES

Core Access
This standard feature provides access to all Web based applications (Intranet, OWA, iNotes etc.) from an unmodified browser as well as providing a webified file viewer for access to Windows & UNIX file shares and a webified Telnet/SSH client.

Host Checker
Client computers can be checked at the beginning and throughout the session to verify an acceptable security posture requiring or restricting network ports; checking files/process and validating their authenticity with MD5 hash checksums. It performs version checks on security applications, and carries out pre-authentication checks and enforcement. Enables enterprises to write their own host check method to customize the policy checks. Resource access policy for non-compliant endpoints is configurable by the administrator.

Cache Cleaner
All proxy downloads and temp files installed during the session.

SAM/NC Secure Application Manager (SAM) combined with Network Connect (NC)
Secure Application Manager dynamically delivers an Active-X or JAVA client that supports application layer tunnels for WTS/Citrix, client server and desktop apps including basic NetBIOS support for file shares.
Network Connect provides a clear channel network layer tunnel similar to IPsec. Where the end-to-end network allows Network Connect will utilise IPsec as the carrier for improved performance. Where that is not possible SSL will be used. Network Connect also supports full Domain logon with GINA integration and full NetBIOS support.

Advanced Platform combined with Central Manager (CM)
The Advanced feature set is targeted at the more complex deployment. It adds an extra layer of management including support for users who belong to multiple groups and require the sum of their privileges to be reflected in a single session. It also provides greater customisation of the user experience.
Central Manager provides enhanced configuration management, real-time monitoring and advanced logging for one or more appliances.

Licence Options

Secure Meeting
Secure Meeting provides secure, controllable online meetings and cross-enterprise collaboration as well as providing a valuable help desk tool with clientless remote control over problem PCs. Juniper is the only SSL VPN vendor to offer this feature.
The SA 2500 supports 50 users across 25 meetings
The SA 4500 supports 100 users across 50 meetings
The SA 6500 supports 250 users across 125 meetings
The meeting and user numbers are doubled in a cluster pair.

SSL Acceleration License (SA 4500 only)
A Cryptographic Processor Add-on is available on the SA 4500 for improved performance. This feature is optional on the SA 4500 and standard on the SA 6500.

High Availability Cluster Pairs
Local Active/Passive with stateful failover
Local Active/Active with third party load balancers
Remote Active/Active

Instant Virtual Systems License (SA 4500 & 6500 only)
Virtualisation allows up to 255 logical gateways in a single appliance. This is ideal for complex businesses, shared data centres and service providers.

ICE (In Case of Emergency) License (SA 4500 & 6500 only)
This license permits you burst up to the maximum number of concurrent users supported by the hardware platform (SA4500 = 1000, SA6500 = 2500) for up to 30 days at a time to deal with any national or local emergency that would prevent your office workers getting to work.

X.COMM DriveMap
This X.COMM developed extension will automatically map network drives, including user home drives, and launch Windows Explorer.  Double clicking on a file will launch the associated client side application.  Importantly, when the file is saved, it goes back to the original mapped network location (unlike Core Clientless Access and competing SSL VPN products using a Webified File Manager).  This option supports all Windows Explorer features including Drag & Drop and includes an initial customisation service.

  Feature SA 6500 SA 4500 SA 2500  
   Number of Concurrent Users 100 to 2500 50 to 1000 25 to 100  
   Cluster Pair for HA 2 to 4 Yes Yes  
   Hardware Based Data Compression Yes Optional No  
   FIPS Yes Yes No  
         
 

 

 


To request information on these Juniper products or any other product please click the Information Request menu item.

Mail to X.COMM - Secure Remote Access
Tel: 01883 730055 Fax: 01883 730057		  
 
web site designed by funkydunk.net