SonicWALL none User Manual
SonicWALL Global VPN Client Page 5
SonicWALL Global VPN Client
The SonicWALL Global VPN Client creates a Virtual Private Network (VPN) connection between your
computer and the corporate network to maintain the confidentiality of private data. The Global VPN Client
provides an easy-to-use solution for secure, encrypted access through the Internet or corporate dial-up
facilities for remote users as well as secure wireless networking for SonicWALL Secure Wireless
appliance clients using SonicWALL’s WiFiSec technology.
computer and the corporate network to maintain the confidentiality of private data. The Global VPN Client
provides an easy-to-use solution for secure, encrypted access through the Internet or corporate dial-up
facilities for remote users as well as secure wireless networking for SonicWALL Secure Wireless
appliance clients using SonicWALL’s WiFiSec technology.
Custom developed by SonicWALL, the Global VPN Client combines with GroupVPN on SonicWALL
Internet Security Appliances to dramatically streamline VPN deployment and management. Using
SonicWALL’s Client Policy Provisioning technology, the SonicWALL administrator establishes the VPN
connections policies for the Global VPN Clients. The VPN configuration data is transparently downloaded
from the SonicWALL VPN Gateway (SonicWALL Internet Security Appliance) to Global VPN Clients,
removing the burden of provisioning VPN connections from the user.
Internet Security Appliances to dramatically streamline VPN deployment and management. Using
SonicWALL’s Client Policy Provisioning technology, the SonicWALL administrator establishes the VPN
connections policies for the Global VPN Clients. The VPN configuration data is transparently downloaded
from the SonicWALL VPN Gateway (SonicWALL Internet Security Appliance) to Global VPN Clients,
removing the burden of provisioning VPN connections from the user.
SonicWALL Global VPN Client Features
The SonicWALL Global VPN Client delivers a robust IPSec VPN solution with these features:
•
Easy to Use - Provides an easy-to-follow Installation Wizard to quickly install the product, an easy-
to-follow Configuration Wizard with common VPN deployment scenarios, point-and-click activation of
VPN connections, and streamlined management tools to minimize support requirements.
to-follow Configuration Wizard with common VPN deployment scenarios, point-and-click activation of
VPN connections, and streamlined management tools to minimize support requirements.
•
Client Policy Provisioning - Using only the IP address or Fully Qualified Domain Name (FQDN) of
the SonicWALL VPN gateway, the VPN configuration data is automatically downloaded from the
SonicWALL VPN gateway via a secure IPSec tunnel, removing the burden from the remote user of
provisioning VPN connections.
the SonicWALL VPN gateway, the VPN configuration data is automatically downloaded from the
SonicWALL VPN gateway via a secure IPSec tunnel, removing the burden from the remote user of
provisioning VPN connections.
•
XAUTH Authentication with RADIUS - Provides added security with user authentication after the
client has been authenticated via a RADIUS server.
client has been authenticated via a RADIUS server.
•
VPN Session Reliability - Allows automatic redirect in case of a SonicWALL VPN gateway failure. If
a SonicWALL VPN gateway is down then the Global VPN Client can go through another SonicWALL
VPN gateway.
a SonicWALL VPN gateway is down then the Global VPN Client can go through another SonicWALL
VPN gateway.
•
Multiple Subnet Support - Allows Global VPN Client connections to more than one subnet in the
configuration to increase networking flexibility.
configuration to increase networking flexibility.
•
Third-Party Certificate Support - Supports VeriSign, Entrust, Microsoft, and Netscape Certificate
Authorities (CAs) for enhanced user authentication.
Authorities (CAs) for enhanced user authentication.
•
Tunnel All Support - Provides enhanced security by blocking all traffic not directed to the VPN tunnel
to prevent Internet attacks from entering the corporate network through a VPN connection.
to prevent Internet attacks from entering the corporate network through a VPN connection.
•
DHCP over VPN Support - Allows IP address provisioning across a VPN tunnel for the corporate
network while allowing WAN DHCP for Internet Access from the ISP.
network while allowing WAN DHCP for Internet Access from the ISP.
•
Secure VPN Configuration - Critical Global VPN Client configuration information is locked from the
user to prevent tampering.
user to prevent tampering.
•
AES and 3DES Encryption - Supports 168-bit key 3DES (Data Encryption Standard) and the new
U.S. Government encryption standard AES (Advanced Encryption Standard) for dramatically
increased security. AES requires SonicOS 2.0.
U.S. Government encryption standard AES (Advanced Encryption Standard) for dramatically
increased security. AES requires SonicOS 2.0.
•
GMS Management - Allows Global VPN Client connections to be managed by SonicWALL’s award-
winning Global Management System (GMS).
winning Global Management System (GMS).
•
Multi-Platform Client Support - Supports Windows 98 SE, Windows ME, Windows NT 4.0 (service
pack 6 or later), Windows 2000 Professional (service pack 3 or later), Windows XP Professional,
Windows XP Home Edition, and Windows XP Tablet PC Edition.
pack 6 or later), Windows 2000 Professional (service pack 3 or later), Windows XP Professional,
Windows XP Home Edition, and Windows XP Tablet PC Edition.
•
NAT Traversal - Enables Global VPN Client connections to be initiated from behind any device
performing NAT (Network Address Translation). The SonicWALL Global VPN Client encapsulates
IPSec VPN traffic to pass through NAT devices, which are widely deployed to allow local networks to
use one external IP address for an entire network.
performing NAT (Network Address Translation). The SonicWALL Global VPN Client encapsulates
IPSec VPN traffic to pass through NAT devices, which are widely deployed to allow local networks to
use one external IP address for an entire network.