Figure 8-5 shows how an SSL
VPN tunnel can be built through the Internet using a web browser.
Figure 8-5 IPsec SSL VPN (WebVPN)
WebVPN currently delivers two modes of SSL VPN access: clientless and thin client.
WebVPNs allow users to access web pages and services, including the ability to access
?¬?les, send and receive e-mail, and run TCP-based applications, without IPsec VPN Client
software. WebVPNs are appropriate for user populations that require per-application or
per-server access control, or access from nonenterprise-owned desktops.
In many cases, IPsec and WebVPN are complementary because they solve different
problems. This complementary approach allows a single device to address all remoteaccess
user requirements.
Benefits
The primary bene?¬?t of WebVPN is that it is compatible with Dynamic Multipoint VPNs
(DMVPN), Cisco IOS Firewalls, IPsec, intrusion prevention systems (IPS), Cisco Easy
VPN, and NAT.
Internet
Headquarters
Workplace
Resources
SSL VPN
Tunnel
WebVPN
Introducing VPN Solutions 305
Restrictions
As with other VPN software, some restrictions also exist with IPsec SSL VPN (WebVPN).
The primary restriction of WebVPN is that it is currently supported only in software.
Pages:
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454