Secure Remote Access

Undoubtedly, organizations face many potential emergency situations, such as disease, floods, hurricanes and power outages. At the same time, implementing a business continuity plan is essential to ensure that the organization is able to maintain operations in the face of adversity and prepare for potential disasters.

Understand the importance of secure remote access to maintain your business continuity plan.

Remote Work Support

First, the ability to support remote work is critical to ensuring business continuity and security with remote work.

In this regard, FortiGate's next-generation firewalls (NGFWs) have built-in support for IPsec Virtual Private Networks (VPNs) to allow remote workers a secure remote access connection to the company's network.

With the protection of endpoint, provided by FortiClient, and multi-factor authentication (MFA) with FortiAuthenticator, organizations can not only securely support remote work, but also maintain business continuity.

The ability to securely support remote work is an essential component of any organization's business continuity plan, particularly disaster recovery.

In addition, the FortiGate NGFW has integrated support for IPsec VPNs, in order to provide a secure connection for employees working in alternative workplaces.

Securing remote work with FortiGate NGFWs

Primarily, IPsec and SSL VPNs integrated across FortiGate NGFW, offer a flexible deployment. In other words, remote users can take advantage of an experience without determining the customer, as well as gain access to additional features through a robust Endpoint integrated into the security solution of the FortiClient endpoint.

Above all, Fortinet solutions are designed to be easy to use from initial purchase to end-of-life. In addition, the FortiGate NGFW and the FortiAP Access Point include “zero touch” deployment functionality.

As a result, devices deployed to remote locations can be pre-configured prior to shipment, thus enabling automatic on-site installation, ensuring business continuity and home office support.

Fortinet Security Fabric

Surprisingly, with the Fortinet Security Fabric, all devices in an organization, including those deployed remotely to support remote work, can be monitored as well as managed from a single dashboard.

Additionally, with a centrally managed FortiGate NGFW or FortiManager platform deployed at a company's headquarters, IT staff can get visibility total of all connected devices, regardless of deployment situation.

Certainly in the face of a natural disaster or other event that disrupts business operations, an organization must be able to quickly transition to a fully remote workforce. In this regard, Table 1 below shows the number of simultaneous VPN users that each model of the FortiGate NGFW can support.

Other Resources for Secure Remote Access

First, in addition to offering encryption of data in transit via a VPN, the solutions Fortinet offer a number of other features that can help your organization secure remote work. These features include:

  • Multifactor authentication. In summary, FortiToken and FortiAuthenticator enable two-factor authentication of remote workers.
  • Data loss prevention (DLP). Next, FortiGate and FortiWiFi provide DLP functionality for remote workers, which is essential for home-based executives with frequent access to sensitive company data.
  • Advanced threat protection. Third, FortiSandbox offers sandbox analysis before reaching your destination.
  • Wireless connectivity. FortiAPs provide secure wireless access to remote job sites, as well as full integration and configuration management from a single pane of glass.
ModelConcurrent SSL VPN UsersConcurrent IPsec VPN UsersManaged FortiAPs (Tunnel mode)
100E50010,00032
100F50016,00064
300E5,00050,000256
500E10,00050,000256
600E10,00050,000512
1100E10,000100,0002,048
2000E30,000100,0002,048
All Larger Models *30,000100,0002,048
* 3300E supports 1,024 Tunnel Mode APs
Table 1: Number of simultaneous VPN connections supported by the various models of FortiGate NGFWs.

Fortinet Use Cases – Remote Work

First, we know that not every employee in an organization requires the same level of access to company resources when working remotely.

In this sense, the Forti One IT together with Fortinet, is able to provide customized home office solutions for all remote workers:

  • Basic remote work. This remote work profile initially only requires access to email, internet, teleconferencing, limited file sharing, as well as some role-specific resources (finance, HR, etc.) of the remote work location.

At the same time, basic remote workers can connect to the organization using VPN-integrated FortiClient and verify their identity with FortiToken for multi-factor authentication.

Work and remote access with Fortinet
Figure 1: Example Fortinet implementation for remote work
  • Advanced Remote User. Power users are employees who require a higher level of access to corporate resources while working in a remote location.

This not only includes the ability to operate in multiple parallel IT environments, but also includes system administrator employees, IT support technicians and emergency personnel.

Advanced Fortinet remote access implementation
Figure 2: Fortinet implementation for advanced user remote access.

In short, for these users the deployment of an access point FortiAP in the alternate workplace, provides the level of access and security they demand. As a result, provide secure wireless connectivity and a secure tunnel to the corporate network.

Just to illustrate, the FortiAPs can be deployed with ZTP (zero-touch provisioning) and will be managed by FortiGate NGFWs in the office. For example, if a tcorporate phone needs to be deployed, it can simply be plugged into the FortiAP for connectivity back to the main office.

?The Benefits of Working From Home,? Airtasker, September 9, 2019.

Achieve full security integration with Forti One IT & Fortinet.

EN
Scroll to Top