GTA Mobile IPSec VPN Client

Designed specifically for the mobile work force, GTA Mobile VPN Client provides the vital ability for remote uses to initiate VPN communication with corporate resources. "Road warriors" or telecommuters need to access mission critical networks over the Internet and often use unsecured public networks or untrusted local networks. A VPN connection may connect end-users that need a secure host to network connection to transmit sensitive information over an Intranet.

The GTA Mobile VPN Client uses the IPSec ESP tunnel mode to form a secure communications channel to a network secured by a GTA Firewall. It provides VPN capability to desktop and notebook computers running Microsoft Windows Vista or XP operating systems, enabling secure client-to-client or client-to-gateway communication over TCP/IP networks and dial-up connections. The GTA Mobile VPN Client can be used with IPSec gateways and firewalls or another host running IPSec compatible VPN software such as another computer running the GTA Mobile VPN Client. Secured encrypted communications can be initiated in any IP environment, such as Ethernet LAN, NAT, DSL or dial-up.

The GTA Mobile VPN Client licenses TheGreenBow VPN technology, an IP-Sec-compliant, virtual private network (VPN client) which supports NAT-T and is interoperable with most VPN IPSec gateways. The configuration wizard makes GTA Mobile VPN Clients easy to install and configure. Following GTA.s standard of offering flexible implementation options, GTA Mobile VPN Client also incorporates advanced features for network administrators who need more implementation options including: import and export of configurations, Hide mode, USB key mode, and start up mode (log-on, boot or manual).

Flexible Configuration:
Whether adding a one or many mobile VPN users, the GTA Mobile VPN Client offers a variety of flexible configuration options, including a configuration wizard, start-up options, hide mode, and USB stick mode. Combined, these flexible configuration options allow IT professional to adapt the GTA Mobile VPN Client to meet their needs with minimal time investment.

Interoperability:
The GTA Mobile VPN Client transparently creates a VPN when operating on the Internet including when utilizing NAT-T. With the client, you can connect securely with all IPSec compliant network products like routers, gateway encryptors, and firewalls. Multiple encryption and authentication algorithms are employed, including DES, 3DES, AES, MD-5 and SHA-1. IKE is supported in main, quick and aggressive modes. Additionally, the GTA Mobile VPN Client supports certificates for connectivity to third party firewalls and VPN devises that support them. Certificates from Microsoft, Netscape, Entrust, Verisign and Baltimore Technologies are used with Simple Certificate Enrollment Protocol (SCEP). XAUTH (Extended Authentication Protocol) V.6 supports RSA SecurID and RADIUS.

Option Availablity
Product	Standard	Optional	Not available
GB-3000
GB-2000X
GB-2000e
GB-2000
GB-800e
GB-800
GB-250e
GB-250		[10 User ]
GB-Ware

VPN Features:

VPN Configuration Wizard provides a format for entering primary VPN configuration specifications, and automatically creates the necessary VPN policy. Manual configuration and management of digital certificates is available a graphical user interface. Create and distribute customized installations for easy setup. Policies and be imported or exported allowing easy implementation of the same policy on multiple PC workstations. The USB drive mode allows pre-loading a policy and a USB drive which is required to be installed on the PC workstation for the VPN tunnel to operate. Security policies can be locked and hidden to ensure network security. By locking the policy and using the hidden mode, network administrators can prevent unauthorized or accidental changes to the VPN policy, reducing the calls for support.

Mobile VPN Example

1.Authorization ensures that only trusted hosts can gain network access. If a computer has not logged in with the VPN gateway (GTA firewall), the connection is denied (1a). if a computer provides authorization credentials such as a password and pre-shared secret, the VPN gateway adds the computer to its list of computers allowed to connect (1b).

2. Encryption defeats interception of traffic by scrambling data. Once authorized, a computer can use encryption to prevent digital eavesdropping (packet sniffing) by any in-between points on the Internet, including unauthorized hosts.