Secure Remote Access

Certainly, organizations face several potential emergency situations, such as diseases, floods, hurricanes and power outages. At the same time, the implementation of a business continuity plan is essential to ensure that the organization is able to maintain operations in the face of adversity and prepare for possible disasters.

Understand the importance of secure remote access to maintain the business continuity plan.

Remote Work Support

First, the ability to support remote work is essential to ensure business continuity and security with remote work.

In this sense, FortiGate's next-generation firewalls (NGFWs) have built-in support for IPsec virtual private networks (VPNs) to allow remote employees a secure remote access connection to the company's network.

With the protection of endpoint, provided by FortiClient, and multi-factor authentication (MFA) with FortiAuthenticator, organizations can not only securely support remote work, but also maintain business continuity.

The ability to provide secure support for remote work is an essential component of the business continuity plan, especially any organization's disaster recovery.

In addition, the FortiGate NGFW has integrated support for IPsec VPNs, in order to provide a secure connection for employees working in alternative workplaces.

Securing remote work with FortiGate NGFWs

Primarily, IPsec and SSL VPNs integrated across FortiGate NGFW, offer a flexible deployment. In other words, remote users can take advantage of an experience without determining the customer, as well as gain access to additional resources through a robust Endpoint integrated into the security solution of the FortiClient endpoint.

Above all, Fortinet solutions are designed to be easy to use from initial purchase to end of life. In addition, the FortiGate NGFW and the Access Point FortiAP include “zero touch” deployment functionality.

As a result, devices deployed in remote locations can be pre-configured before shipping, thus allowing automatic installation on site, which ensures business continuity and support for the home office.

Fortinet Security Fabric

Surprisingly, with the Fortinet Security Fabric, all devices in an organization, including those deployed remotely to support remote work, can be monitored, in addition to being managed from a single panel.

In addition, with a FortiGate NGFW or FortiManager platform that is centrally managed and deployed at a company's headquarters, IT staff can get visibility total of all connected devices, regardless of the deployment situation.

Certainly in the event of a natural disaster or other event that disrupts business operations, an organization must be able to transition quickly to a completely remote workforce. Accordingly, Table 1 below shows the number of simultaneous VPN users that each FortiGate NGFW model can support.

Other Resources for Secure Remote Access

First, in addition to offering data encryption in transit through a VPN, solutions Fortinet offer a number of other features that can help your organization protect remote work. These features include:

  • Multifactorial authentication. In short, FortiToken and FortiAuthenticator allow remote workers to double-factor authentication.
  • Data loss prevention (DLP). Next, FortiGate and FortiWiFi provide DLP functionality for remote workers, which is essential for home office executives with frequent access to confidential company data.
  • Advanced threat protection. Third, FortiSandbox offers restricted area analysis before reaching its destination.
  • Wireless connectivity. FortiAPs provide secure wireless access in remote workplaces, as well as full integration and configuration management in a single panel.
ModelConcurrent SSL VPN usersConcurrent IPsec VPN usersManaged FortiAPs (Tunnel mode)
100E50010,00032
100F50016,00064
300E5,00050,000256
500E10,00050,000256
600E10,00050,000512
1100E10,000100,0002,048
2000E30,000100,0002,048
All Larger Models *30,000100,0002,048
* 3300E supports 1,024 Tunnel Mode APs
Table 1: Number of simultaneous VPN connections supported by the various models of FortiGate NGFWs.

Fortinet use cases - Remote Work

First, we know that not every employee in an organization requires the same level of access to company resources when working remotely.

In this sense, the Forti One IT together with Fortinet, is able to provide customized home office solutions for all remote workers:

  • Basic remote work. In principle, this remote work profile requires only access to email, internet, teleconferencing, limited file sharing, as well as some specific function features (finance, HR, etc.) of the remote workplace.

At the same time, basic remote workers can connect to the organization using FortiClient integrated with the VPN and verify their identity with FortiToken for multi-factor authentication.

Work and remote access with Fortinet
Figure 1: Example of Fortinet implementation for remote work
  • Advanced remote user. Power users are employees who require a higher level of access to corporate resources while working from a remote location.

That way, you can not only include the ability to operate in multiple parallel IT environments, but also include system administrator employees, IT support technicians, and emergency personnel.

Advanced Fortinet remote access implementation
Figure2: Fortinet implementation for advanced user remote access.

In short, for these users the implantation of an access point FortiAP in the alternative workplace, it provides the level of access and security they require. As a result, provide secure wireless connectivity and a secure tunnel for the corporate network.

Just to illustrate, the FortiAPs can be deployed with ZTP (zero-touch provisioning) and will be managed by FortiGate NGFWs in the office. For example, if a tcorporate phone needs to be deployed, it can simply be connected to FortiAP for connectivity back to the main office.

“The Benefits of Working From Home,” Airtasker, September 9, 2019.

Achieve full security integration with Forti One IT & solutions Fortinet.

EN
Scroll to Top