IPSec VPN

The IPSec VPN feature provides secure, encrypted communication to business partners and remote offices at a fraction of the cost of dedicated leased lines. Using the SonicWALL's intuitive Web Management Interface, you can quickly create a VPN security association to a remote site. Whenever data is intended for the remote site, the SonicWALL automatically encrypts the data and sends it over the Internet to the remote site, where it is decrypted and forwarded to the intended destination.

IPSec VPN Applications

Linking Two or More Networks Together SonicWALL VPN is the perfect way for you to connect to your branch offices and business partners over the Internet. SonicWALL VPN offers an affordable, high-performance alternative to leased site-to-site lines. If NAT is enabled, SonicWALL VPN also provides access to remote devices that have been assigned private IP addresses.   Remotely Managing the SonicWALL The SonicWALL PRO 300, the SonicWALL GX Series and the SonicWALL VPN Upgrade include a free VPN client for remote administration. The SonicWALL VPN client, installed on Windows 95, 98, NT, and 2000, allows you securely manage the SonicWALL over the Internet.   Accessing Network Resources from a VPN Client VPN client remote access allows your employees to connect to your network from any location. The VPN client remote access solution is easy to deploy and supports hundreds of remote users. The SonicWALL PRO 300 includes 50 VPN client licenses for remote access.

IPSec VPN Features and Benefits

Interoperable IPSec VPN Implementation.
SonicWALL VPN is based on the IPSec standard for VPN, so it's compatible with other VPN products with the same IPSec implementation, such as Check Point Firewall-1, Cisco PIX, Nortel Contivity and Axent Raptor.

Seamless Support of Windows Networking.
VPN tunnels between two SonicWALLs can pass Windows Networking broadcasts, which support Windows Network Neighborhood. Users can then view both local and remote network resources in the same Windows Network Neighborhood.

VPN Client for Secure Dial-Up Access.
The SonicWALL VPN Client allows your organization to include dial-up Internet users into the VPN. The Client supports Windows 95, 98, NT and 2000. The SonicWALL group VPN tunnel feature simplifies deployment of VPN clients by allowing distribution of a common VPN client configuration to remote users.

Authentication Service.
SonicWALL Authentication Service adds strong authentication using digital certificates to VPN-enabled SonicWALL network security appliances and SonicWALL VPN Client software. This optional service provides the benefits of PKI without the cost and complexity of do-it-yourself PKI solutions.

3rd Party Digital Certificate Support
A digital certificate is an electronic means to verify identity by a trusted third party known as a Certificate Authority (CA). SonicWALL now supports third party certificates in addition to the existing Authentication Service. The difference between third party certificates and the SonicWALL Authentication Service is the ability to select the source for your CA certificate.

DHCP Over VPN
In some network deployments, it is desirable to have all VPN networks on one logical IP subnet, and create the appearance of all VPN networks residing in one IP subnet address space. This facilitates IP address administration for the networks using VPN tunnels. DHCP over VPN is a feature that allows a Host (DHCP Client) behind a SonicWALL obtain an IP address lease from a DHCP server at the other end of a VPN tunnel.

VPN Bandwidth Management
VPN Security Associations can be allocated bandwidth if Bandwidth Management is enabled for it.

NAT Traversal Support
VPN NAT Traversal is a feature designed to overcome problems faced when IPSec traffic is intended to pass through a NAT device. NAT traversal addresses the issue of UDP (User Datagram Protocol) encapsulation. NAT Traversal addresses the problem by wrapping an IPSec packet inside a UDP packet when a NAT or NAPT (Network Address Port Translator) device is detected between peers.

SonicWALL Global Management System (GMS).
Large, distributed enterprises and service providers can centrally manage and monitor hundreds of SonicWALL VPN deployments using SonicWALL GMS.