[c-nsp] A good SSL VPN Solution ?

Jason Shearer jshearer at amedisys.com
Thu Jan 21 12:10:36 EST 2010


For "traditional" clientless SSL that is right.  It is a per user cost.  With 8.2.1 there is a new license you can purchase called AnyConnect Essentials.  It is a flat license with no per user count.  If you have it installed you can ONLY run AnyConnect and not clientless SSL.

Jason

-----Original Message-----
From: Bill Blackford [mailto:BBlackford at nwresd.k12.or.us]
Sent: Thursday, January 21, 2010 11:03 AM
To: Jason Shearer; Chris Wopat; cisco-nsp at puck.nether.net
Subject: RE: [c-nsp] A good SSL VPN Solution ?

I believe there is additional costs for the SSL licensing on the asa5520 and it fairly high.

-b

-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net [mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Jason Shearer
Sent: Thursday, January 21, 2010 8:48 AM
To: Chris Wopat; cisco-nsp at puck.nether.net
Subject: Re: [c-nsp] A good SSL VPN Solution ?

Keep in mind that Cisco's AnyConnect solution requires a client to be installed.  It has a pretty small footprint but a client nonetheless.  As Chris stated it is cheap.  Like an additional $750 list for a 5520 which will support 750 concurrent sessions.

Jason

-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net [mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Chris Wopat
Sent: Thursday, January 21, 2010 10:09 AM
To: cisco-nsp at puck.nether.net
Subject: Re: [c-nsp] A good SSL VPN Solution ?

> Hi all,
>
> Can you advise me a good vpn ssl solution for accessing Office LAN
> from my desktop computer without having to install a client software ?
> We should be able to access machines with ssh, http, imap and https.
>
> Are cisco asa appliances a good solution for this purpose ? In this
> case, what bundle would one choose for about 50 users ?
>
> I've already tried adito, which is a good open source product, it
> forked into a proprietary solution, SSL Explorer.

If you need only a client VPN that tunnels to your network. ASA with
Anyconnect Essentials license works well and is inexpensive. If you a
more advanced setup that will give your VPN users a "Portal" with
links to things such as intranet pages, remote desktop sessions, file
shares, etc you should definitely check out Juniper's SSLVPN SA-XXXX
(IVE) devices as they are incredible boxes:

http://www.juniper.net/in/en/products-services/security/sa-series/

The downside is that these devices are only SSLVPN endpoints, not firewalls.

--Chris
_______________________________________________
cisco-nsp mailing list  cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/

*** NOTICE--The attached communication contains privileged and confidential information. If you are not the intended recipient, DO NOT read, copy, or disseminate this communication. Non-intended recipients are hereby placed on notice that any unauthorized disclosure, duplication, distribution, or taking of any action in reliance on the contents of these materials is expressly prohibited. If you have received this communication in error, please delete this information in its entirety and contact the Amedisys Privacy Hotline at 1-866-518-6684. Also, please immediately notify the sender via e-mail that you have received this communication in error. ***
_______________________________________________
cisco-nsp mailing list  cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/

*** NOTICE--The attached communication contains privileged and confidential information. If you are not the intended recipient, DO NOT read, copy, or disseminate this communication. Non-intended recipients are hereby placed on notice that any unauthorized disclosure, duplication, distribution, or taking of any action in reliance on the contents of these materials is expressly prohibited. If you have received this communication in error, please delete this information in its entirety and contact the Amedisys Privacy Hotline at 1-866-518-6684. Also, please immediately notify the sender via e-mail that you have received this communication in error. ***


More information about the cisco-nsp mailing list