|
|
| |
CM4000 Secure Desktop Tunneling
|
| |
| |
| Secure Desktop Tunneling is
an easy to use remote management tool that allows both end users and
administrators to securely access and take remote control of any computer
running VNC or Microsoft's Remote Desktop. The new tool couples Remote
Desktop Protocol (RDP) and the popular VNC with the trusted open source
SSH tunneling protocol, to significantly improve productivity and
security for companies accessing their remote offices, or remotely
accessing their data centers.
Remote access, management and troubleshooting
Opengear’s Secure Desktop Tunneling enables remote users
and administrators to securely access Windows, Linux, Mac, AIX,
HP-UX, Solaris and UNIX computers. The remote administrator can
manage these computers and the data center (remotely upgrading server
operating systems, rebooting the machines, viewing BIOS information
from booting servers before their OS is loaded etc). The remote
user can connect to an office computer and have access to all of
the applications, files, and network resources (just as though they
were in front of the computer screen at work). |
| |
|
| |
| Opengear bundles the Secure
Desktop Tunneling tool with its console server and secure device server
remote management hardware products. So Opengear's CM4000 desktop
and rack-mount appliances now provide secure remote VNC and Remote
Desktop access, while also giving administrators the tools to remotely
monitor and administer their networks and servers over the console
ports. The administrator has the troubleshooting tools to console
manage UNIX basedservers; and securely access EMS in Microsoft Windows
Server 2003. CM4000 also provides secure out-of-band access; so these
remote computers and network appliances can be reconfigured and power
cycled, even if the main internet data pathway is down. Secure
SSH Tunnels protect VNC and Remote Desktop
Secure Desktop Tunneling implements SSH tunneling,
also known as SSH port forwarding, the process of forwarding selected
TCP ports through authenticated and encrypted tunnels. It is generally
recognized that while VNC and RDP are secure enough to use on a
firewall protected private network, they are not robust enough for
use directly over a public network. Secure Desktop Tunneling securely
tunnels the VNC and RDP sessions from the remote user through to
the CM4000 over any broadband (wireless, ADSL, cable) Internet connection;
or over the enterprise private network, or even over a direct dial-up
or ISDN modem connection. The CM4000 then forwards these RDP and
VNC sessions to the computer being accessed through the local TCP/IP
network or through the computer’s serial COM port. |
| |
|
| |
| VNC access generally allows
access to the whole computer, so security is imperative. VNC uses
a random challenge-response system to provide the basic authentication
to connect to a VNC server. This is reasonably secure and the password
is not sent over the network. However, once connected, all subsequent
VNC traffic is unencrypted. So a malicious user could snoop the VNC
session. Also there are VNC scanning programs available, which will
scan a subnet looking for PCs which are listening on one of the ports
which VNC uses. Similarly security with Microsoft’s Remote Desktop
is paramount as anyone who has access to these administrative features
can control the server. You can configure Remote Desktop traffic to
be all encrypted, however its authentication is weak so it is susceptible
to man in the middle (MITM) attacks. The solution is to tunnel all
RDP and VNC over a SSH connection, thereby ensuring all traffic is
protected by strong authentication and encryption.
No more hostile branch office sites and SMB customer sites
With its Secure Desktop Tunneling and its rich set of console management
features, the CM4000 is the solution for off-site administration.
No longer do enterprises with large distributed networks and branch
offices need to regard their remote locations as hostile environments.
Opengear now offers them a secure affordable solution for remote
access to these sites, without the complexities of implementing
full enterprise wide VPN solutions. The administrators controlling
these networks can implement out-of-band remote management of the
servers and network devices at these sites, and embrace them within
the enterprise managed network (without the prohibitive costs of
installing legacy KVM over IP solutions). They can also now administer
their enterprise data centers after-hours; with a tool that lets
them remotely manage from the application layer, right down through
the operating system bring-up and boot level, to hardware reset.
Similarly the VAR/SI support manager now has the tools to help
their SMB customers from afar. Opengear enables them to proactively
manage the servers, power facilities, network equipment and storage
devices at their customers' remote sites. No longer are they limited
to being just reactive. And in event of trouble (or disaster) they
can offer rich out-of-band recovery facilities (that would usually
only be found in a large data center) and save the costs of on site
repair. Best of all, they can make money, by offering their customers
a truly top quality service package.
|
| |
|
|
Ansprechpersonen |
|
|
Online Portale |
|
|
