The Desktop Firewall
Endpoint Security VPN enforces a Desktop Security Policy on remote clients. You define the Desktop Security Policy in a Rule Base. Rules can be assigned to specific user groups, to customize a policy for different needs.
|
|
Important - Before you begin to create a Desktop Security Policy, you must enable the Policy Server feature on the Security Gateway. |
Endpoint Security VPN downloads the first policy from the Security Gateway. It looks for and downloads new policies every time it connects or on re-authentication.
When Endpoint Security VPN makes a VPN connection, it connects to the Security Gateway and downloads its policy. Endpoint Security VPN enforces the policy: accepts, encrypts, or drops connections, depending on their source, destination, and service.
Endpoint Security VPN Desktop Policy Architecture
|
1 |
Security Management Server |
Manages all policies. |
|
2 |
Gateway |
Firewall of LAN, holds Desktop Security Policy and TTM configuration. |
|
3 |
Endpoint Security VPN client |
Gets Desktop Security Policy from Security Gateway and enforces policy on client computer. |