ZyWALL SSL 10 Support Notes
47
All contents copyright (c) 2006 ZyXEL Communications Corporation.
3. SSL VPN Solution
In the chapter one, we describe the integration of ZyWALL and SSL VPN. Furthermore,
you could integrate a ZyWALL UTM and ZyWALL SSL 10 so that the traffic could be
secure inspected first by ZyWALL UTM functions like Anti-Virus/IDP before ZyWALL
SSL10’s authentication. Beyond this, we could establish a VPN tunnel between the Main
office’s ZyWALL UTM and the remote office’s so the SSL remote user will access the
remote office’s resource via central management.
3.1 UTM Integration: ZyWALL UTM+ZyWALL SSL10
One of IT staff’s headache, virus/intrusion could always reach internal network even though
they secure the network gateway with access control rules and apply all the latest service
pack or signature update on server hosts. The reason is usually because user’s notebook may
access Internet from home or from some unsecured place. The virus may infect user’s
notebook because you think you just open a normal file. The intrusion may be injected to
your notebook silently because user access internet without aware of a vulnerability is in
his/her notebook.
So for those trusted user but untrusted notebook/PC, IT staff needs to apply the mechanism
to block those virus/intrusions when they want to access company’s internal recourse. We
would suggest to integrate a ZyWALL SSL10 with a ZyWALL UTM or 3
rd
party’s UTM
firewall. The AV/IDP function will block abnormal traffic when virus or intrusions are
detected.
Application Diagram
:
Summary of Contents for ZyWALL SSL 10
Page 13: ...ZyWALL SSL 10 Support Notes 13 All contents copyright c 2006 ZyXEL Communications Corporation ...
Page 36: ...ZyWALL SSL 10 Support Notes 36 All contents copyright c 2006 ZyXEL Communications Corporation ...
Page 55: ...ZyWALL SSL 10 Support Notes 55 All contents copyright c 2006 ZyXEL Communications Corporation ...