In the process of network construction, however, there are always the following difficulties:

1. Wide distribution of branches, no local IT personnel, unable to independently complete the export VPN gateway on-line configuration

2. The number of branches is large, the operation and maintenance personnel of headquarters are few, and the remote location of service faults is difficult.

3. Branch users, equipment access is uncontrolled, security risks are great

4. Large IT needs of branches and limited IT construction budget with small deployment space for equipment

5. Headquarters VPN gateway to all branches, no redundant backup, high reliability and no guarantee

Typical network

DPtech Security Intelligent Branch Solutions deploy high-performance devices as central VPN gateways at headquarters, and a VPN1000 family of products as branches to access VPN gateways in local branches. The VPN connection. VPN1000, which is encrypted with the VPN gateway of headquarters, integrates many kinds of product features. It can effectively, quickly and safely realize the remote access of branch offices. At the same time, Dptech can use UMC centralized control platform to configure many VPN devices in a unified way. Management and monitoring functions to achieve large-scale rapid deployment of VPN.

Programme characteristics

■Unified configuration plug and play

The branch has no IT personnel, can not independently complete the on-line configuration of export VPN gateway, mostly rely on headquarters or third party installation to implement, low efficiency, high cost problems, support the headquarters of VPN1000 series products to complete the equipment configuration. Branch equipment is plug and play.

■Reliable link multiple support

The support of 3G/4G module can guarantee the wireless VPN access when there is no wired link, and in the case of cable link failure, as a backup link, the business will not be interrupted. At the same time, multiple load balancing algorithms can be supported when multiple operators are connected to the link. Improve the user experience.

■Wired wireless seamless access

The built-in wireless controller can manage all the wireless access devices in a unified way, realize the seamless roaming within the wireless coverage area, and meet the requirements of mobile office.

■Application control flexibility and efficiency

Built-in application design module, combined with the application signature library, can control all traffic flow, and can deploy policy based on time, block P2P traffic during working hours, limit the speed of P2P traffic during off-duty time, Flexible and efficient to ensure the office environment of the Internet experience.

■Unified equipment user authentication

The access equipment and users of all branch offices are unified into the authentication server designated by headquarters for authentication, and can be assigned to different users and different devices. For example, the identity of visitors can be accessed on the outside network. Technical colleagues can access the document server and finance department colleagues can access the financial server. Once unauthorized users and equipment are accessed, they can be blocked and alerted at the first time to ensure secure access to the intranet environment.

■Branch access controllable

Headquarters managers can monitor the equipment and network bandwidth of all branches. Once it is found that the outlet bandwidth is overtaken by external network traffic, they can adjust the policy by remote sending configuration. At the same time, the headquarters operators can monitor the access equipment of branch offices, the number of wired PC and wireless terminals and the user situation, and discover the abnormal users and equipments in time. Accurate location and tracing.