• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 458
  • Last Modified:

vpn concretrator

What is vpn concentrator? What device i need for this?
does vpn terminate on this device ?
to provide access to internal devices do i need to make changes to my firewall considering i have this device on my dmz?
how many users or vpn connections it can take?
can i provide dhcp on this device?
can we provide ssl vpn using this device?
0
mohannitin
Asked:
mohannitin
1 Solution
 
pergrCommented:
A VPN Concentrator will terminate all VPN tunnels from remote users and/or branches.

Many firewalls can nowadays to this on the firewall itself, but some people chose to do it on a dedicated device, which may have more features and will offload the firewall to handle other things.

The tunnels are typically of two different types, either IPSec or SSL VPN.
Some vendors use different devices for "VPN Concentration" of IPSec and SSL VPN - especially for SSL VPN.

The number 1 in the market for SSL VPN termination over the last 10 years has been the Juniper SA/MAG devices, which are specifically dedicated on SSL VPN and has a rich feature set related to this, A normal Juniper firewall can not handle SSL VPN at all.

Many other vendors, such as Fortinet use exactly the same device for both firewall, IPSec termination and SSL VPN termination - and they have a reasonable feature set.

If it is a dedicated device, then yes, you would typically put it in the DMZ.

For very scalable solutions (tens of thousands of users) you would typically cluster several devices.

Yes, the device will allocate IP addresses to the VPN tunnels (although DHCP may not be the protocol used).
0
 
mohannitinAuthor Commented:
thanks , awesome answer
0

Featured Post

Upgrade your Question Security!

Add Premium security features to your question to ensure its privacy or anonymity. Learn more about your ability to control Question Security today.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now