+ Post New Thread
Page 2 of 2 FirstFirst 12
Results 16 to 25 of 25
Internet Related/Filtering/Firewall Thread, Basic vpn for small primary in Technical; ...
  1. #16

    Join Date
    Apr 2012
    Location
    Leeds
    Posts
    305
    Thank Post
    0
    Thanked 67 Times in 53 Posts
    Rep Power
    36
    Quote Originally Posted by twin--turbo View Post
    DrayTek Vigour Router, Only £180 will do 10 VPN users fine.

    Rob
    I completely agree with twin turbo. A Draytek Vigor will do this for you no problem. If you need help setting it up let me know.

    Dave

  2. #17

    m25man's Avatar
    Join Date
    Oct 2005
    Location
    Romford, Essex
    Posts
    1,637
    Thank Post
    49
    Thanked 463 Times in 338 Posts
    Rep Power
    140
    The problem with conventional vpn in schools is the LA who ultimately dictates what can be reached or not as the case may be.

    SSL VPN is by far the easiest to implement in many cases as they don't need to know what it is that your tunnelling to on port 443
    The work on almost every platform with iPad and Android supported and even if you only have one IP/port available they can be configured to "Pass Thru" specific services.
    Eg. SSL VPN appliance and Exchange server can share one port 443 instance using a method of L4 routing.

    We have always used the Sonicwall appliances for this as they can provide both the tunnel end point, a customisable reverse proxy for remote access and granular policy controlled webdav

    The downside is that at £600+ for the SRA1200 it's way over your budget but if you work on the advantages rather than just cost you can normally easily justify the outlay to the SMT
    Once they get to use them they quickly realise their true worth:-

    Such as RDP access without the need for an RDP server or licensing by using your local PCs and software.
    Remote access to files and resources.
    Windows, Mac and mobile support.

    Other vendors include Barracuda, juniper, Draytek all offer variations of the same thing.

  3. #18

    Join Date
    Aug 2009
    Posts
    279
    Thank Post
    20
    Thanked 22 Times in 19 Posts
    Rep Power
    14
    Quote Originally Posted by SchoolsBroadband View Post
    I completely agree with twin turbo. A Draytek Vigor will do this for you no problem. If you need help setting it up let me know.

    Dave
    +1 for the Draytek, I use the IPSec/L2TP VPN on their Vigor 2830 router for remote admin

    (and they just released a firmware update to enable IPv6 support, score!)

  4. #19

    Join Date
    Apr 2010
    Posts
    2,069
    Thank Post
    85
    Thanked 189 Times in 156 Posts
    Rep Power
    84
    M25man. SRA 1200 Looks like a fantastic product. I have found all the setup demos but really need to see what the teacher will see when logging on to the system. Can you explain how that works and what they see. For example do they run a connect client or visit a website to make the connection.

  5. #20

    Join Date
    Mar 2012
    Posts
    23
    Thank Post
    1
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    Quote Originally Posted by twin--turbo View Post
    DrayTek Vigour Router, Only £180 will do 10 VPN users fine.

    Rob
    Do you have to set up each user on this though? can only get it working if i set it up ser username!

  6. #21

    Miscbrah's Avatar
    Join Date
    Dec 2011
    Posts
    928
    Thank Post
    259
    Thanked 264 Times in 162 Posts
    Rep Power
    116
    Quote Originally Posted by twin--turbo View Post
    DrayTek Vigour Router, Only £180 will do 10 VPN users fine.

    Rob
    Ooh that looks nifty. Which one? What features give you your VPN-like access?

    VPN on the router is not something I (fully) understand, but if you've got time for a summary I'd be interested...

  7. #22

    Join Date
    Apr 2012
    Location
    Leeds
    Posts
    305
    Thank Post
    0
    Thanked 67 Times in 53 Posts
    Rep Power
    36
    An ipsec dial-in will be fine. The Draytek comes with software that makes it nice and easy or you can use mac / windows vpn dial-in tool.

    The Draytek 2830 is fine if you have ADSL or cable or leased line as it's got 2 x WAN ports. Get the N version if you want wireless too.

    We sell them btw so if you want me to get you one do give us a call

    Thanks

    Dave

  8. #23

    m25man's Avatar
    Join Date
    Oct 2005
    Location
    Romford, Essex
    Posts
    1,637
    Thank Post
    49
    Thanked 463 Times in 338 Posts
    Rep Power
    140
    Quote Originally Posted by edutech4schools View Post
    M25man. SRA 1200 Looks like a fantastic product. I have found all the setup demos but really need to see what the teacher will see when logging on to the system. Can you explain how that works and what they see. For example do they run a connect client or visit a website to make the connection.
    Sorry for the late response the World Cup Qualifiers meant a 20 day break and a Datacentre move and office refurb, the end users get an AD integrated login.

    The next screen is a customisable menu we normally have an RDP option (with WOL) that allows the SLT members to access and login to their own PC's thus negating the need to host/run an RDS server.
    The technician can have access to the VPN option, others whatever you want hem to have.
    If you have an RDS server this can be offered.
    External contractors can be given a dedicated portal or non domain account on the SRA with restricted access to any kit they need to maintain .

    The end result is a Secure VPN , Remote Access Solution (that doesn't need An RDS server or licensing if your happy to send users to an unused PC), Remote File Access all operating on the single SSL port open on your firewall.
    It's also possible to use SSL offloading at Layer 4 so all traffic routes to the SRA except for instance an Exchange Server this would pass right through to the desired target server.

    I have been using these for years and when you look at what it provides for the cost its really easy to sell it to the SMT.

    The only negative thing that I can say about them is that they are now owned by Dell, which means that once your their list they will not leave you alone until they own you....

  9. #24

    glennda's Avatar
    Join Date
    Jun 2009
    Location
    Sussex
    Posts
    7,817
    Thank Post
    272
    Thanked 1,138 Times in 1,034 Posts
    Rep Power
    350
    You should be able to setup remote access services and tunnel over 443 is called RAS I think.

    if not then Watchguard units are good so and the juniper ssl appliances although they are expensive.

  10. #25

    Join Date
    Oct 2008
    Location
    Lincolnshire
    Posts
    2,240
    Thank Post
    13
    Thanked 230 Times in 219 Posts
    Rep Power
    68
    We use Watchguard cannot fault it.

    Question I was going to ask what is the originals posters firewall if any on site? Maybe this has an option?

SHARE:
+ Post New Thread
Page 2 of 2 FirstFirst 12

Similar Threads

  1. Server Spec for a small primary school
    By Luke_T in forum Hardware
    Replies: 10
    Last Post: 19th September 2011, 08:40 AM
  2. Spec a basic server for small install?
    By gshaw in forum Windows
    Replies: 5
    Last Post: 9th June 2008, 01:51 PM
  3. Replies: 2
    Last Post: 17th April 2007, 05:31 PM
  4. MSI creation packages for small budget?
    By contink in forum Educational Software
    Replies: 28
    Last Post: 27th September 2006, 07:59 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •