WAN experts Steve Taylor and Jim Metzler analyze and share best practices on WAN issues from optimization to management.
For years, there have been two traditional methods for secure remote access: IPSec and SSL VPNs. Both have been discussed in this newsletter over the years, and each has its definite strengths and weaknesses. Now, wireless LAN provider Aruba has proposed an alternative to using IPSec on the client computer that we find innovative.
Aruba proposes that telecommuters and road warriors consider deploying Aruba’s special remote-access point (RAP) software on the company’s APs and using the Aruba APs from home or hotel rooms. The APs — rather than your client device - communicate with Aruba’s centralized controller in your data center over an IPSec tunnel. This precludes the user from having to mess with passwords, PINs and IPSec key fobs.
The only requirement is that the remote AP has wired Internet connectivity.
This approach certainly seems to us to have some appeal. But we also turned to our colleague, Joanie Wexler, author of Network World’s Wireless in the Enterprise newsletter, for her take. Joanie said, “This could be easier for home users who have to log in to the VPN repeatedly every day and for road warriors who would like to use multiple wireless devices from a single hotel-room Internet connection.”
If you would like to take a closer look at this solution, a white paper with an extensive explanation is available here. And while you’re at the Webtorials site, you might also want to take a look at a paper on next-generation access, the Kubernan State-of-the-Market report on Mobile WiMAX.
We’d like to hear your thoughts on the Aruba approach. Let us hear from you, and we’ll be happy to share the feedback.
Steve Taylor is president of Distributed Networking Associates and publisher/editor-in-chief of Webtorials. Jim Metzler is vice president of Ashton, Metzler & Associates.
Rss FeedRss Feed
Learn how to simplify your branch infrastructure while dramatically increasing app performance with Citrix Branch Repeater.
Free Guide: "Next Gen Load Balancing: 8 Things You Need to Handle Today's Network Traffic" shows you the functionality needed in your next load balancer.
Free Guide: "The Secret to Getting Maximum Speed from your Web Applications."' Learn how you can deliver Web apps up to 5x faster.
The Leader in Network Knowledge
Partner Content
Simplify Your Branch Infrastructure
Learn how to simplify your branch infrastructure while dramatically increasing app performance with Citrix Branch Repeater.
Download the Free Info Kit
Next-Gen Load Balancing
Free Guide: "Next Gen Load Balancing: 8 Things You Need to Handle Today's Network Traffic" shows you the functionality needed in your next load balancer.
Download the Free Guide
Accelerate Your Web Apps by up to 5x
Free Guide: "The Secret to Getting Maximum Speed from your Web Applications."' Learn how you can deliver Web apps up to 5x faster.
Download the Free Guide
Comments (3)
Alternatives to IPSec for mobile workersBy Anonymous on June 28, 2007, 11:05 amSounds interesting...several years ago we developed a "Network in a Box" solution for our field offices that combined a small router, switch and AP in a microwave-size...
Reply | Read entire comment
Even more capable.By Anonymous on June 28, 2007, 2:27 pmThe Aruba AP-70 has 2 ethernet ports. Use Port0 to get the ap home, and use Port1 to extend a VLAN. Use the wireless as a bandwidth restricted public hotspot. Connect...
Reply | Read entire comment
Aruba Remote AP'sBy Patrick on July 3, 2007, 4:01 pmWe currently use the Remote AP functionality for offices in agencies that have their own firewalls, but who still want to participate in the Enterprise-WLAN system....
Reply | Read entire comment
View all comments