Presentation is loading. Please wait.

Presentation is loading. Please wait.

Secure remote access to applications through any web browser Internet Headquarters SSL Customers Suppliers Partners Mobile Workforce Applications eMail.

Published byBerenice Farmer Modified over 9 years ago

Similar presentations

Presentation on theme: "Secure remote access to applications through any web browser Internet Headquarters SSL Customers Suppliers Partners Mobile Workforce Applications eMail."— Presentation transcript:

1 Secure remote access to applications through any web browser Internet Headquarters SSL Customers Suppliers Partners Mobile Workforce Applications eMail Web Applications File Transfer Telnet/SSH Internet Cafe SSL Ease of Deployment – a ‘clientless’ solution Network Agnostic – firewall traversal Mobile worker wants to use any internet connected PC Simple, ubiquitous, and proven to be secure

2 Why Secure flexible working Increase Employee productivity through high-bandwidth secure remote access to data and telephony applications Reduce your remote access costs for home-workers by using broadband access instead of ISDN Get 10 times the bandwidth of traditional remote access mechanisms (ISDN, Dial) Provide secure access to telephony, email, fax and intranet applications over a broadband connection

3 Why Nortel Networks Nortel Network provides Industry leading telephony application and extensive experience in the area of Telephony-VOIP, Unified messaging and Remote voice capability Nortel Networks Contivity is a scalable VPN device enabling secure Voice and data communication over a common Internet connection Contivity provides a graceful evolution Evolution from a purpose built IP VPN device to a comprehensive IP services gateway Nortel Networks has the knowledge and breadth of products enable a secure communication network.

4 Securing Your Business Networks

5 Internet DSL Branch Offices Headquarters IP Services Gateway Encrypted Authenticated Resilient How must we secure the business infrastructure? - IPSec When: Cost is the driver not application performance Remote offices are “off the beaten track” Remote/mobile user has own PC available Simple, ubiquitous, and proven to be secure Ethernet Cable

6 Business Case for Secure branch connectivity 10X the performance … for approximately 30% cost saving Plus added security and meshing of locations Frame RelayBusiness DSL (VPN) Monthly Circuit Charge$110$80 Line Speed64 Kbps.5 - 1 Mbps Network DesignHub and SpokeIP Mesh SecurityNoneIP Sec Total annual cost$92,400$67,200 In addition if we replaced the ISDN backup from 10 Large branches to ADSL We get an additional 30% Cost savings. IP VPN replacement of a regional 70 location Frame Network

7 What options are available for the Secure WAN connection ‘One of Everything’ Method Contivity Secure IP Services Gateway

8 . Service charges for upgrade not included Router upgrade / replacement was expensive and left significant issues unresolved 50% of the installed base could not be upgraded Router downtime during upgrade an issue Questions concerning router security integrity No support for stateful firewall – would require 2 nd box Budget exceeded

9 Why Secure Branch Connectivity Increased Security True end-to-end confidentiality provided by Encryption, etc Cost Savings for Connections Using Broadband for access, rather than dedicated Leased Line or Frame Relay, retiring RAS, etc Increased Bandwidth Modern access technologies allow for higher access speeds Reduced OPEX Simpler network topology means saving on equipment, access connections, and management overhead Flexibility for Connections Generic access technologies mean that any connection can be added to the network, at anytime

10 Security-VPN Portfolio Contivity 1700 Contivity 2700 Contivity 4600 Medium Branch 5-500 Tunnels 25-100 Mbps 3DES VPN 200 Mbps Firewall Med/Large Site 5-2000 Tunnels 50-120 Mbps 3DES VPN 300 Mbps Firewall Large Site 5000 Fixed Tunnels 100-140 Mbps 3DES VPN 400 Mbps Firewall Contivity 1000 Family Small Office/ Branch 5-30 Tunnels 10-15 Mbps 3DES VPN 100 Mbps Firewall Contivity VPN Client Alteon Application Switch 2424-SSL Alteon SSL Accelerator 410 Alteon SSL Accelerator 310 Optivity Policy Manager

11 Securing Your Data Center

12 Strong perimeter security What is a Secure Data Centre? High performance intelligent network Defined by Characteristics rather than Architecture Centralised computing resources

13 What Are the Characteristics? Characteristics match Requirements: Secure but Accessible Co$t Effective Resilient and Reliable Scalable and Flexible Manageable High Performance

14 What Are the Components? Alteon Security Manager Alteon Application Switch Alteon Content Cache BayStack Switches Alteon Switched Firewall Alteon SSL Accelerator Passport 8600 Routing Switch Contivity VPN Gateway

15 Why Application Switching? The IT Department’s Dilemma Critical Business Applications Employee Internet Access Server Load Network Load Application Performance  = Budget Tighter Security Complexity

16 What is an Application/Web Switch? An ultra-fast Ethernet switch with integrated application intelligence A switch that uses application intelligence and health checking to enable a Dynamic Data Path A switching platform that can provide multiple layers of security functionality A solution that plugs into existing infrastructure to boost performance, reliability, and scalability, extending asset life Common application switch functions include load balancing, security, and bandwidth management

17 Alteon Switch Applications Server Load Balancing Application LB Global Server LB Application Health Checks Persistence Support Source IP/Port Cookies SSL Identifier Advanced Filtering Layer 2-7 Attributes VLAN Filtering Accept, Deny, NAT, Redirect Embedded Security Svcs DoS Attack Prevention Application Abuse Protection SSL acceleration / VPN Content Intelligence Layer 7 Inspect Cookie, URL, HTTP Header User Agent (PDA, Browser) Network Device Load Balancing Firewall/VPN/IDS WAN Links WAP Gateways Traffic Management Bandwidth Management ToS Marking Network Services Network Address Translation VLAN Tagging Trunking Layer 2/3 Application Redirection Web Site Cache SSL Appliance Streaming Media VPN

18 Alteon Switching Customer Benefits Enterprise Benefits Enhanced business productivity Simplified operations A secure, reliable network Optimized access/response for distributed/mobile employees and partners Maximizing IT return on investment Service Provider Benefits Improve performance, reliability, and scalability of key services and applications Server hosting Security (Firewall, VPN, IDS) LDAP, DNS Streaming (RTSP) Many more Security enhancements Wireless Application Protocol (WAP) load balancing

Download ppt "Secure remote access to applications through any web browser Internet Headquarters SSL Customers Suppliers Partners Mobile Workforce Applications eMail."

Similar presentations

| Copyright © 2009 Juniper Networks, Inc. | www.juniper.net 1 WX Client Rajoo Nagar PLM, WABU.

| Copyright © 2009 Juniper Networks, Inc. | 1 WX Client Rajoo Nagar PLM, WABU.
M A Wajid Tanveer http://www.IctDirector.com Infrastructure M A Wajid Tanveer http://www.IctDirector.com.

M A Wajid Tanveer Infrastructure M A Wajid Tanveer
Barracuda Link Balancer Link Reliability and Bandwidth Optimization.

Barracuda Link Balancer Link Reliability and Bandwidth Optimization.
Virtual Private Networks COSC541 Project Jie Qin & Sihua Xu October 11, 2014.

Virtual Private Networks COSC541 Project Jie Qin & Sihua Xu October 11, 2014.
Transitioning to IPv6 April 15,2005 Presented By: Richard Moore PBS Enterprise Technology.

Transitioning to IPv6 April 15,2005 Presented By: Richard Moore PBS Enterprise Technology.
© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 High-performance Gigabit Ethernet ports rapidly transfer large files supporting.

© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 High-performance Gigabit Ethernet ports rapidly transfer large files supporting.
1 Intel / Shiva VPN Solutions Stephen Wong System Engineer.

1 Intel / Shiva VPN Solutions Stephen Wong System Engineer.
91.527 - Human Computer Interaction - Fall 2010 Class project By Khang Nguyen Virtual Private Network Design for Remote Access Cambridge - SFO Airport.

Human Computer Interaction - Fall 2010 Class project By Khang Nguyen Virtual Private Network Design for Remote Access Cambridge - SFO Airport.
Enterprise Data Solutions A Better Network. A Better ROI. Martin Matthews Technical Sales Engineer.

Enterprise Data Solutions A Better Network. A Better ROI. Martin Matthews Technical Sales Engineer.
Module CSY3021 Network Planning and Programming RD-CSY3021-08/09 1.

Module CSY3021 Network Planning and Programming RD-CSY /09 1.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Prototyping the WAN Designing and Supporting Computer Networks – Chapter 8.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Prototyping the WAN Designing and Supporting Computer Networks – Chapter 8.
Network Security Topologies Chapter 11. Learning Objectives Explain network perimeter’s importance to an organization’s security policies Identify place.

Network Security Topologies Chapter 11. Learning Objectives Explain network perimeter’s importance to an organization’s security policies Identify place.
Highly Available Central Services An Intelligent Router Approach Thomas Finnern Thorsten Witt DESY/IT.

Highly Available Central Services An Intelligent Router Approach Thomas Finnern Thorsten Witt DESY/IT.
Blue Coat Systems Securing and accelerating the Remote office Matt Bennett.

Blue Coat Systems Securing and accelerating the Remote office Matt Bennett.
Eric Kilroy. Introduction  Virtual Private Network A way to connect to a private network through a public network such as the internet.

Eric Kilroy. Introduction  Virtual Private Network A way to connect to a private network through a public network such as the internet.
This work is supported by the National Science Foundation under Grant Number DUE-0302909. Any opinions, findings and conclusions or recommendations expressed.

This work is supported by the National Science Foundation under Grant Number DUE Any opinions, findings and conclusions or recommendations expressed.
Goal of The Paper  What exactly is a VPN?  Why do you need a VPN?  what are some of the technologies used in deploying a VPN?  How does a VPN work?

Goal of The Paper  What exactly is a VPN?  Why do you need a VPN?  what are some of the technologies used in deploying a VPN?  How does a VPN work?
Data Centers and IP PBXs LAN Structures Private Clouds IP PBX Architecture IP PBX Hosting.

Data Centers and IP PBXs LAN Structures Private Clouds IP PBX Architecture IP PBX Hosting.
Network Topology. Cisco 2921 Integrated Services Router Security Embedded hardware-accelerated VPN encryption Secure collaborative communications with.

Network Topology. Cisco 2921 Integrated Services Router Security Embedded hardware-accelerated VPN encryption Secure collaborative communications with.
Faten Yahya Ismael.  It is technology creates a network that is physically public, but virtually it’s private.  A virtual private network (VPN) is a.

Faten Yahya Ismael.  It is technology creates a network that is physically public, but virtually it’s private.  A virtual private network (VPN) is a.

Similar presentations

Ads by Google