|
|
|
|
|
|
 
|
|
ISP-Planet Survey: Managed
Security Service Providers
(Back to Article) Managed Remote Access VPN Chart |
|
Provider
|
Platform(s) |
Tunnel Protocols & Encryption
|
VPN User Authentication
|
VPN User
Access Controls |
VPN Features &
Add-Ons |
Additional Comments
|
|
Altoria
|
Cisco, Aventail, Juniper, Nortel CPE Gateways Persistent, Temporary, or No VPN Client |
IPsec / IKEv1 & v2, SSLv3 & TLSv1, PPTP encrypted with AES, 3DES, RC4 |
PSKs, Certificates, Passwords, RSA Tokens using MSSP or Customer AAA / Database |
ACLs can refer to Network / Subnet, Ports / Services, URLs / Data Objects, Endpoint Device ID, Endpoint Scan. |
Included:
Optional:
|
Depending on platform chosen, may use full VPN client, Java/ActiveX client, or only web browser. Client can be obtained from portal; all Windows devices supported. For password auth, customer creates users directly on their live domain. For hosted RSA strong auth, customer creates users via web form, activated within 24 hrs. Monitoring as described under S2S VPN. |
|
NW-based Persistent VPN Client |
IPsec / IKEv1, SSLv3, PPTP, L2TP over IPsec encrypted with AES, 3DES, DES |
Passwords, RSA Tokens using MSSP's AAA / Database |
ACLs can refer to Network / Subnet, Ports / Services, URLs / Data Objects, Endpoint Scan. |
Included:
Optional:
|
Must be purchased with S2S VPN or Business Internet Service. Available with Wi-Fi, Ethernet, Dial, or Bring Your Own Broadband. MSSP's connection manager client provides integrated access, including multi-carrier cellular & global Wi-Fi options. |
|
|
FiberLink |
Cisco, Nortel, Juniper CPE Gateways Persistent, Temporary, or No VPN Client |
IPsec / IKEv1, SSLv3 encrypted with AES, 3DES |
Passwords, Tokens using MSSP or Customer AAA / Database |
ACLs can refer to Endpoint Device ID. |
Included:
Optional: |
Client can be bundled or downloaded depending on customer needs. Compatible with Win32 laptops & basic WinCE PDAs, supported by 24/7 helpdesk. Portal provided to hosted database, or customer can use own RADIUS / AD for user auth & access rights. |
|
Getronics
|
Cisco, Juniper, Checkpoint, SonicWALL CPE Gateways Persistent or No VPN Client |
IPsec / IKEv1 & v2, SSLv3, PPTP, L2TP over IPsec encrypted with AES, 3DES, RC4 |
Certificates, Passwords, RSA Tokens, Fingerprint Readers using MSSP's AAA or ActiveDirectory . |
ACLs can refer to Network / Subnet, Ports / Services, URLs / Data Objects, Endpoint Device ID, Endpoint Scan. |
Included: Optional:
|
RA VPN service is bundled with Managed Firewall Service. Windows IPsec client is available for download. Web-based SSL client is platform non-specific. User account change process is based on service level, ranging from simple account reset to complex validation. |
|
Checkpoint, Cisco Hosted CPE Persistent VPN Client |
IPsec / IKEv1, PPTP encrypted with 3DES |
PSKs, Passwords using MSSP or Customer AAA / Database |
ACLs can refer to Network / Subnet, Ports / Services, URLs / Data Objects. |
Included: Optional:
|
RA VPN service is bundled with Managed Firewall Service. Cisco & Checkpoint Windows clients are provided to customer. User management specified by customer. |
|
|
Provider
|
Platform(s) |
Tunnel Protocols & Encryption
|
VPN User Authentication
|
VPN User
Access Controls |
VPN Features &
Add-Ons |
Additional Comments
|
|
IBM
ISS
|
Checkpoint, Cisco, Fortinet, Juniper, ISS Proventia M CPE Gateways Persistent or Temporary VPN Client |
IPsec / IKEv1 & v2, SSLv3 encrypted with AES, 3DES, RC4 |
PSKs, Certificates, Passwords using Customer's AAA / Database |
ACLs can refer to Network / Subnet, Ports / Services, URLs / Data Objects. |
Included:
Optional:
|
CPE hosted by customer or MSSP. Standalone service or Managed Firewall feature. Customer obtains VPN client from vendor. MSSP trains up to 3 customer user admins. SLAs include change ack (within 2 hrs) & implementation (within 2/8/24 hrs), outage notification, portal availability, emergency rsp. |
|
MegaPath |
NW-based or Cisco, Aventail CPE Gateways Persistent, Temporary, or No VPN Client |
IPsec / IKEv1, SSLv3 & TLSv1 encrypted with AES, 3DES |
PSKs, Certificates, Passwords, Tokens, Biometrics using MSSP or Customer AAA / Database |
ACLs can refer to Network / Subnet, Ports / Services, URLs / Data Objects, Endpoint Device ID, Endpoint Scan. |
Included: Optional:
|
CPE hosted by customer or MSSP. Cisco for IPsec; Aventail for SSL. Both available with MSSP advanced client which allows connection only by protected endpoints & includes dialer, firewall, IPS, anti-spyware, AV. Or customer can use iPass client w/ dial, EV-DO, Wi-Fi, & hotel broadband access services. Software & adds/changes/drops via portal. |
|
Perimeter |
Fortinet, Nortel CPE Gateways Persistent VPN Client |
IPsec / IKEv1, L2TP over IPsec encrypted with AES, 3DES |
Passwords using MSSP's AAA / Database |
ACLs can refer to Endpoint Device ID, Endpoint Scan. |
Included:
Optional:
|
CPE hosted by customer or MSSP. Windows client downloaded via URL. To disable user account, customer informs MSSP. |
|
Secure
Designs
|
SonicWALL, Cisco, Watchguard, Juniper CPE Gateways Persistent, Temporary, or No VPN Client |
IPsec / IKEv1 & v2, SSLv3, PPTP, L2TP over IPsec encrypted with AES, 3DES |
PSKs, Certificates, Passwords, RSA / Vasco Tokens using Customer's AAA / Database
|
ACLs can refer to Network / Subnet, Ports / Services, URLs / Data Objects. |
Included:
Optional:
|
RA VPN service is bundled with Managed Firewall Service. Uses vendor supplied Win32 IPsec clients, embedded Win PPTP client, or any SSL-capable browser. Software & setup docs supplied via portal. Auth based on MSSP-managed user list on appliance or customer's Windows Domain, RADIUS, or AD server. |
|
SecureWorks
|
iSensor, Checkpoint, Juniper, Cisco CPE Gateways Persistent, Temporary, or No VPN Client |
IPsec / IKEv1 & v2, SSLv3 & TLSv1, PPTP, L2TP over IPsec encrypted with AES, 3DES, DES, RC4 |
PSKs, Certificates, Passwords, Tokens, Biometrics using MSSP or Customer AAA / Database |
ACLs can refer to Network / Subnet, Ports / Services, URLs / Data Objects, Endpoint Device ID, Endpoint Scan. |
Included:
Optional:
|
RA VPN service is bundled with Managed Firewall Service. VPN client software, protocols, algorithms, & auth methods all depend on type of firewall. User add/drop/change thru tickets submitted via portal or phone. |
|
Provider
|
Platform(s) |
Tunnel Protocols & Encryption
|
VPN User Authentication
|
VPN User
Access Controls |
VPN Features &
Add-Ons |
Additional Comments
|
|
Solutionary
|
Cisco, Checkpoint, Juniper CPE Gateways Persistent or Temporary VPN Client |
IPsec / IKEv1 & v2, SSLv3 & TLSv1, PPTP, L2TP over IPsec encrypted with AES, 3DES, RC4 |
PSKs, Certificates, Passwords, Tokens using Provider's AAA / Database |
ACLs can refer to Network / Subnet, Ports / Services, URLs / Data Objects. |
Included:
Optional:
|
Can use any vendor-supported VPN client. Add/drop/change requests submitted via e-mail form or portal. Monitoring as described under S2S VPN. |
|
Symantec
|
Checkpoint, Cisco, Juniper CPE Gateways Persistent VPN Client |
Depends on firewall vendor technology. [ No further details supplied ] |
PSKs, Certificates, Passwords, Tokens, Biometrics using MSSP or Customer AAA / Database |
ACLs can refer to Network / Subnet, Ports / Services, URLs / Data Objects, Endpoint Device ID, Endpoint Scan. |
Included:
Optional:
|
RA VPN service is bundled with Managed Firewall Service. Customer manages VPN client distribution & administration. For user adds/changes/drops, see firewall mgmt change control process. |
|
Unisys
|
Cisco, Checkpoint, Juniper, Nortel CPE Gateways Persistent or Temporary VPN Client |
IPsec / IKEv1 & v2, SSLv3 encrypted with AES, 3DES, RC4 |
Certificates, Passwords, Tokens using MSSP or Customer AAA / Database |
ACLs can refer to Network / Subnet, Ports / Services, URLs / Data Objects, Endpoint Device ID. |
Included:
Optional:
|
CPE hosted by customer or MSSP. Persistent IPsec client for Cisco, Nortel, Checkpoint, & iPass. Browser-based Java/ActiveX download for SSL VPNs. Supports customer or MSSP-driven user admin via Managed Service Desk add/drop/change process. |
|
Verizon
Business
|
Aventail CPE Gateway Persistent, Temporary, or No VPN Client |
IPsec / IKEv1, SSLv3 encrypted with AES, 3DES, RC4, DES |
PSKs, Certificates, Passwords, RSA, Tokens using MSSP or Customer AAA / Database |
ACLs can refer to Network / Subnet, Ports / Services, URLs / Data Objects. |
Included:
Optional:
|
3 client options: clientless browser access to web & file apps, auto-downloaded Aventail OnDemand Java agent for client/server apps, or installed Aventail Connect Windows client for full network access. Service Management Console used by customers to define access policies. |
|
Verizon
Business |
Nortel, Cisco CPE Gateways Persistent VPN Client |
IPsec / IKEv1 & v2, L2TP over IPsec encrypted with AES, 3DES |
PSKs, Certificates, Passwords, RSA Tokens using MSSP or Customer AAA / Database |
ACLs can refer to Network / Subnet, Ports / Services. |
Included:
Optional:
|
Standalone or bundled with Verizon Business Access Manager for RA connectivity & desktop mgmt. ESM web site used to download Nortel or Cisco Windows VPN clients & manage user accounts, group policy, products, & reports. |
|
Virtela |
NW-based or CPE Gateways (F5, Juniper) Persistent or No VPN Client |
IPsec / IKEv1, SSLv3 encrypted with 3DES |
PSKs, Passwords, RSA Tokens using MSSP or Customer AAA / Database |
ACLs can refer to Endpoint Scan. |
Included:
Optional:
|
CPE hosted by customer or MSSP. SSL preferred; IPsec clients also available. If authentication is through a proxy, customer maintains user control. VPN provides access to entire network unless ACLs applied by a managed router/firewall service. |
|
Provider
|
Platform(s) |
Tunnel Protocols & Encryption
|
VPN User Authentication
|
VPN User
Access Controls |
VPN Features &
Add-Ons |
Additional Comments
|
| RA VPN Table Key | |
| VPN Features & Add-Ons |
In this table, "Included" means that the feature is available with this RA VPN service at no additional cost. |
| Additional notes |
Services are link-independent except where noted. Services are stand-alone offerings except where noted.
|
|
ISP-Planet's
RSS feed 
Jupitermedia Corporation has two divisions: Jupiterimages and JupiterOnlineMedia
Legal Notices, Licensing, Reprints, Permissions, Privacy Policy.
WebcastsDownloads and eKits
|
|
