ISP Planet - Technology - MSSP Survey Table: Managed Site to Site VPN Services

Sections

• Best of the Lists
• Business
• CLEC-Planet
• Equipment
• Executive
Perspectives
• Fixed Wireless
• Investor
• Marketing
• Market Research
• News
• Notable Quotes
• Politics
• Profiles
• Resources
• Technology
• Value-Added
Services
• Webhosting
Also ...
• About Us
• Authors
• ISP-Planet Blog
• Letters
• Site Map
• Technology Jobs

ISP Resources

ISP-Lists
ISP Glossary
ISP News
The List
ISPCON Events
Free Newsletters

internet.com

IT
Developer
Internet News
Small Business
Personal Technology
International

Search internet.com
Advertise
Corporate Info
Newsletters
Tech Jobs
E-mail Offers

internet.commerce

Partner With Us

Managed Security Services

MSSP Survey Table:
Managed Site to Site VPN Services

by Lisa Phifer
VP Core Competence, Inc.
[January 11, 2005]

Managed S2S VPN Services	S2S VPN Platforms	Auth Methods	Encrypt Methods	Policy Updates	Logging & Reporting	RA VPN Add-ons	Additional Comments
	Tunnel Protocols
Altoria Site-to-Site VPN Solutions	Cisco, Nortel	Customer-generated PSK or digital certificate	DES, 3DES, AES-128, AES-192, AES-256	Customer opens an on-line case with the MSSP 24x7 SOC	Secure Web interface	Fully-meshed VPN and load balancing	Standalone service
	IPsec
AT&T VPN Tunneling Service (AVTS) High End Site to Site Service	Cisco IOS, Cisco 3000, Nortel	Provider-generated digital certificate and PKI	DES, 3DES (AES in 2005)	No process described in response	Customer can get reports on MIS, can also have read-only SNMP access to VPN routers	Load balancing, MARO, ISDN dial-around-the-cloud for backup	Available alone or as firewall option. Can be paired with EVPN or MRS services for backup
	IPsec, GRE
ClearPath iVPN	Cisco MGX carrier-class routers	Provider-generated digital certificate and PKI	DES, 3DES, AES	VPN Policy definitions are automatically updated for every VPN service	Available via SNAP View, a Web-based management platform	None	Network-based solution for networks where low latency and QoS / Priority Queuing are needed. QoS classes enable converging data, voice, and/ or video. Access links must be purchased from MSSP
	IPsec, MPLS, SSL
ClearPath SNAP VPN	Cisco IOS, Cisco 3000, Nortel	Provider-generated digital certificate and PKI	DES, 3DES (AES in 2005)	No process described in response	Customer can get reports on MIS, can also have read-only SNMP access to VPN routers	Load balancing, MARO, ISDN dial-around-the-cloud for backup	Available alone or as firewall option. Can be paired with EVPN or MRS services for backup
	IPsec, GRE
Globix VPN Offerings	Cisco PIX, CheckPoint	PSK or digital certificate, generated by customer or provider	3DES	Change requests initiated via Remedy. Customers are contacted, changes made, then reviewed after completion	Secure portal	Load balancing	Network-based service, available alone or firewall option. No VoIP support in current offering. Can manage VPN across provider-owned and customer-owned hardware
	IPsec, GRE, MPLS
ISS Site-to-Site VPN [.pdf]	ISS Proventia, Cisco PIX, CheckPoint, Netscreen	PSK or digital certificate, generated by customer or provider	DES, 3DES, AES	As for firewall, requests are submitted via secure portal, reviewed, implemented, verified, and tested to SOC's ability	Reports delivered through Customer Portal Website, including log data giving encryption status for connections	None	Available only as firewall option. VoIP performance varies by platform. Supports creation of S2S VPN tunnels between both managed and unmanaged firewalls. SOC will work with the other endpoint to assist in determining settings for connectivity and troubleshooting
	IPsec
LURHQ Managed Firewall	Cisco PIX, CheckPoint, Netscreen	Customer-generated PSK or digital certificate	DES, 3DES, AES	Customers or MSSP can initiate requests and implement changes, tracked via Portal Help Desk Tickets	Secure Web-based client portal	None	Available only as firewall option. Totally non-metered. All SOC team members are SANS GIAC-certified
	IPsec, SSL
MCI IP VPN	Cisco ESR Switches, Cisco IOS Routers	Provider-generated PSKs with automated refresh	DES, 3DES (AES now under dev)	Requests via secure Web portal or Customer Service are evaluated by SOC for potential impacts, then implemented in accordance with rigorous change management process	Concord eHealth reports include exceptions, auto-trending, daily health, e2e latency. Optional real-time reporting and protocol analysis via CircuitView, powered by Visual Networks	Managed WAN or LAN, Enhanced Traffic Mgmt, Integrated IP Centrex, IP Multicasting, Secure Extranet, IP VPN Gateway, NW-based RA VPN	Network-based VPN service. Available as standalone or bundled with Enterprise Firewall. Provides QoS to ensure real-time traffic such as VoIP reliably. Fully integrated with NW-based IP Centrex solution. Customer must purchase access links from MSSP
	MPLS
MCI Dedicated Private IP	Cisco (GRE), Lucent (IPsec)	Provider-generated PSKs with automated refresh	DES, 3DES (AES now under dev)	Customers submit requests via secure Web portal or Customer Service (see above)	SLAs and performance reporting available through VPN Interactive Performance Reporting (VIPeR) system	HA, Load Balancing, Integrated Data Center Services, Class Queuing and Traffic Shaping, Policy Based Routing, IP VPN Gateway, NW-based RA VPN, On-Site Installation	CPE-based VPN service. Available as standalone or bundled with Enterprise Firewall. Will support QoS between gateway and CPE routers in 1H05. Must purchase two thirds of VPN links from MSSP; one third can be from other ISP(s)
	IPsec, GRE
PresiNET VPN Services	vDeadbolt Appliances	Provider-generated PSK or digital certificate and PKI	3DES, AES	Interaction with customer	Secure Web interface	Failover	Available only as firewall option
	IPsec
RedSiren Managed Firewall and VPN	CheckPoint NG on Solaris or Nokia, Cisco PIX 500, Netscreen, Symantec Enterprise Firewall, SonicWALL, Secure Computing G2	Customer-generated password, RADIUS, SecurID, PSK or digital certificate	3DES, AES	Change-related tickets initiated via event monitoring or customer request thru vendor NMS or phone. See Firewall Chart for details	Secure Web portal	None	Available alone or firewall option. Resilient VoIP telephony, specifically designed to secure the critical voice services that are converging within IT infrastructures, usually requires evaluation of environment
	IPsec, PPTP, L2TP, GRE, SSL
Securalis Managed VPN	CheckPoint on Nokia, Solaris, or Linux Securplatform, Netscreen,Cisco PIX	Customer-generated digital certificate	3DES, AES	Authorized policy administrator calls MSSP, authenticated via SecurID. See Firewall Table for details	Secure Web interface, with RSA SecurID token authentication, provides 75 reports	PSTN/ISDN/ ADSL backup, access links through partnership with telecom companies	Available alone or as firewall option
	IPsec
Secure Designs Firelan Managed VPN	Netscreen, SonicWALL, WatchGuard, Cisco	PSK or digital certificate, generated by customer or provider	3DES, AES	Customers submit requests via e-mail or web support site. If authorized, change made and response returned	FTP, Web, e-mail	HA	Available alone or as firewall option
	IPsec
SecurePipe Rampart VPN Site-to-Site	Rampart Firewall	Provider-generated digital certificate or PSK, plus password	3DES	Customers can call MSSP Network Security Engineers 24/7 to request changes to VPN policies	VPN certificates and other key materials are available through Security Console	None	Available only as firewall option. Customized packet filtering options available on a per-tunnel basis
	IPsec, CIPE
SecureWorks Managed VPN	Cisco PIX 500, CheckPoint on Nokia or SPLAT	Provider-generated digital certificate	3DES	Requests to SOC reviewed by senior sec. engineers. MSSP implements approved changes	Secure Web interface called SecureHUB	HA	Available only as firewall option
	IPsec, PPTP, GRE, MPLS
Unisys Managed Security Services	Cisco, Nortel, CheckPoint on Nokia, Netscreen, others upon request	Provider-generated PSK or digital certificate depending on platform	3DES, AES	Customers submit change requests to SOC via a secure Web page, e-mail, or phone	Secure Web page	HA	Included in standard firewall service; also available standalone. See Firewall Table for SLA details
	IPsec
VeriSign Managed VPN Service	CheckPoint, Cisco PIX, Netscreen	PSK or digital certificate, generated from local CA on firewall	DES (France & China only), 3DES, AES	MSSP works with customers to define and schedule change requests in accordance with customer's change management and security policy	Logs and reports available via Customer Resource Portal, providing detailed view of managed devices	None	Available only as firewall option. No VoIP support. Due diligence management and monitoring ensures that deployed VPN solutions for secure connectivity are in-step with business requirements
	IPsec
VigilantMinds VPN Management Service	CheckPoint, Cisco PIX	PSK, digital certificate, RADIUS	DES, 3DES, AES	SecureXone Security Portal; Validated phone requests; Validated e-mail requests	SecureXone Security Portal, Monthly face-to-face meetings with executive, PDF reports	IDS/IPS, Firewall, Security Alert Service, Weekly Vulnerability Scanning	Available alone or firewall option. Can be deployed as NW or CPE-based VPN, depending on customer need
	IPsec

< Back to article

Feedback

ISP-Planet's RSS feed

Jupitermedia Corporation has two divisions: Jupiterimages and JupiterOnlineMedia

Jupitermedia Corporate Info

Legal Notices, Licensing, Reprints, Permissions, Privacy Policy.
Advertise | Newsletters | Tech Jobs | Shopping | E-mail Offers

Solutions

Whitepapers and eBooks

Avaya Article: Developing Speech Grammars that Rock, Part 2: Grammar Tuning
Microsoft Partner Portal: Hyper-V Vaults Microsoft into Virtualization Race
Small Business Solution Exchange: The Pros and Cons of Outsourcing Enterprise Emails
Avaya Article: JSR 289: SIP Servlet 1.1 Provides Significant Benefits for SIP Application Developers

Microsoft Article: Build and Run Virtual Machines with Hyper-V Server 2008
Internet.com eBook: Real Life Rails
Internet.com eBook: Best Practices for Developing a Web Site
MORE WHITEPAPERS, EBOOKS, AND ARTICLES

Webcasts

HP Webinar: Virtualization for Business Critical SAP on SQL Server
Microsoft Partner Portal Video: Microsoft Gold Certified Partners Build Successful Practices

Rackspace Hosting Center: Customer Videos
MORE WEBCASTS, PODCASTS, AND VIDEOS

Downloads and eKits

IdeaBlade Download: DevForce EF--Developing for LINQ and the Entity Framework
Microsoft Download: Silverlight 2 SDK
30-Day Trial: SPAMfighter Exchange Module
Iron Speed Designer Application Generator

Microsoft Download: Silverlight 2 Developer Runtime (Windows)
IdeaBlade Download: .NET Programming with DevForce Classic
MORE DOWNLOADS, EKITS, AND FREE TRIALS

Tutorials and Demos

Online Demo: IBM Cognos 8 Business Intelligence Reporting

MORE TUTORIALS, DEMOS AND STEP-BY-STEP GUIDES