Product Overview

SSL VPN gateway is a product independently developed by Guotai NetEase, mainly used to protect the security of internal network communication. The product is based on SSL protocol to authenticate users on external networks. After authentication, it forms an encrypted communication private network for legitimate users and records detailed proxy audit logs. Using SSL VPN gateway can easily establish a secure internal network on the Internet and conduct hierarchical information security control. The product has undergone localization compatibility adaptation and can provide a Xinchuang version.

Features

Maintain user usage habits:By using port forwarding technology, there is no need to listen for services on 127.0.0.1 or add virtual network cards, and it does not change users' daily usage habits.

Client application binding:Administrators/users can set up multiple application client software for a service, as well as customize associated applications. Users can freely choose the application client software to the greatest extent possible.

Supports multiple TCP/UDP application protocols:Support multiple application protocols that use dynamic ports, such as FTP, TFTP, Oracle, SQL Server, etc.

Support multiple third-party authentication systems:Support Radius, Windows AD, and LDAP user authentication systems, providing integrated user authentication facilities. By using a third-party authentication system, administrators do not need to configure any user related information on the VPN, they only need to authorize users on different authentication servers or servers.

Application of PKI certificate based on trust linked list:Support three ways to obtain one's own certificate: 1) self issuing certificate; 2) Self issued certificate request message; 3) Import certificates issued by third-party CAs.

Role based fine-grained access control:Role based access control facilitates administrators to quickly make corresponding control rule changes based on enterprise changes.

Flexible and secure application service definition:To define a service in SSL VPN, it is necessary to specify the address, port, service type, Application Access Control Rule, associated client applications, whether to hide the service, and the role to which the service applies.

Different authentication methods:Not only does it support user authentication with multiple credentials, but it also provides various authentication methods with different strengths, including username/password, APC (additional code) Certificate、 One time password (Safeword), etc.

典型部署