My client wishes to use a thin client solution for delivering their
applications. Therefore the plan is to have 2 firewalls between the public
and private network with the application server sitting in a DMZ.
On the public firewall configure a SecureID Client - ACE Server located in
the DMZ
Then we can deliver the application through SecureICA (Active X 56bit
encryption) Client (To my limited security knowledge this is the equivleant
of a VPN for ICA only without the overheads!).
Can anyone with any knowledge please comment on my solution plus any further
recommendations they may have (Encryption, Certificates, etc ...)
The theory is : if I use SecureICA rather than a firewall client then the
deployment will be simplified as the ActiveX SecureICA client will download,
as far as I know there are no VPN ActiveX/Java clients??
Any thoughts (particular with regard to any security implications )?
Regards
Peter York
Technosys Ltd
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
