Just thinking a little outside the box here... What about application delivery as a service via Terminal Services for MS apps and a VNC based solution for Linux/Unix apps. There are a few vendors that are interesting of you want better integration (I've used Ericom and Citrix in the past). This is easy to setup failover, allows you to "Pool" your licensing to help offset the cost, and gives you a central place to do updates from.
Not sure if the Pauldotcom crew would care to comment but I'd love to here about some pen testing they've done against these types of setups. Take care, Chris Hunt On Jan 11, 2010, at 5:54 AM, "Karl Bailey" <[email protected]<mailto:[email protected]>> wrote: We currently have a cross site cluster SSL based VPN solution that has reached the end of life, the vendor has told us we’d need to spend £25k+ to bring the solution up to scratch & give us a 100 user license (we have 500 employees & found that during the current bad weather in the UK the 100 users JUST covers us) ... It doesn’t do anything to special: * AD integration. * Authenticate on groups * Security based on groups. * We also carry out a level of host checking (ie: does the host have a virus checker & is the virus DB up to date). It would also be good if it was cross site (ie: if one site goes down the other site takes the load, we do this currently with DNS & really low TTL’s then remove the dns record of the broken site) I’d like to replace this with something we can sick time into getting right rather than spending the budget on hardware... I’m looking at openVPN ... Any other suggestions / bright ideas?? Regards Karl _______________________________________________ Pauldotcom mailing list [email protected]<mailto:[email protected]> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: <http://pauldotcom.com> http://pauldotcom.com
_______________________________________________ Pauldotcom mailing list [email protected] http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
