Posted: Fri Jul 09, 2010 1:41 pm Post subject: Firewall + SSL VPN for web servers
Hi, I'm hosting a few VMs running web servers on a ESXi with 2 NICs. One NIC will be used to connect to the VMs running the web servers, and the other NIC will be used to connect to the ESXi.
I'm interested in putting a firewall in front of the box to prevent tempering with the NIC connecting to the ESXi (this NIC can be on the private LAN port of the firewall). The other NIC card connected to the VMs can then be connected to the DMZ port on the firewall.
However, I'm also interested in being able to manage the ESXi remotely on the road, rather than from the data center. So I need some kind of a SSL VPN access.
While searching online, I came across the following units that offers hardware OTP token:
Billion BiGuard S20
Zyxel USM100
However, there has been numerous reports about how the Zyxel can crash and requires periodic reboot, and the Billion isn't really available in North America.
I have thought about using the Juniper SSG5 as a firewall, and also a SonicWall SSL-VPN 200. The SSG5 appears to be a very fast firewall (high throughput rate), and the SSL-VPN 200 can send OTP token via e-mail. Originally I was considering the newer SonicWall SRA-4200 as this can also send out OTP token via e-mail but it doesn't have firewall feature (ie DMZ port) built in?
Can someone recommend a solution/product (preferably requiring only 1U space), that would be applicable in my case?
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum