|
|
|
Using Reflection for the Web with Virtual Private Networks (VPNs)
Technical Note 1504
Last Reviewed 03-May-2007
Applies To
Reflection for the Web 2008 (All Editions except Standard)
Reflection for the Web version 8.0 through 9.6
Summary
Technical Note 1504
Last Reviewed 03-May-2007
Applies To
Reflection for the Web 2008 (All Editions except Standard)
Reflection for the Web version 8.0 through 9.6
Summary
Reflection for the Web includes a security proxy server component that you can use to provide a secure terminal session to your host. If you already have a VPN set up at your site, however, you may prefer to use your existing security implementation with Reflection.
This technical note provides additional information on using Reflection for the Web with VPNs.
Reflection Security Proxy Server
Note: Beginning in Reflection for the Web 2008, the security proxy server is not included in the Standard Edition.
Reflection for the Web can be configured to pass host connections through a Reflection security proxy server. This configuration gives web users access to the host computer while safeguarding the connection between the browser and the proxy server.
For more information on the Reflection Security Proxy Server, see the Overview section of the Reflection Administrative WebStation, or see the Installation and System Administrator Guide.
Virtual Private Networks
A VPN is a secure tunnel through an insecure environment, such as the Internet. The VPN allows remote users to act as if they are on a local secure network even though they are not. All network traffic goes through the secure tunnel across the insecure environment, and all traffic is encrypted.
Choosing Between the Reflection Security Proxy Server and a VPN
The main difference between a VPN and Reflection’s security proxy is that Reflection's security proxy server provides a secure tunnel exclusively for Reflection traffic while a VPN provides a secure tunnel for all traffic. Many VPNs also provide sophisticated access control mechanisms that can assist you in managing user access. In addition, VPNs generally require VPN software to be installed on the client workstation, making deployment to clients more difficult.
Typically, if you have control over the client, and you are allowing access to other network services (mail or ftp, for example) in addition to terminal access, a VPN may be a better security solution for your company.
Because VPNs are transparent to applications, Reflection for the Web should not require any special configurations to operate in a VPN environment.
