Comparison of SSL and IPSec VPN technology | Configuring a FortiGate SSL VPN |
Legacy versus web-enabled applications
IPSec is well suited to
SSL is typically used for secure web transactions in order to take advantage of
Authentication differences
IPSec is a
SSL supports
Connectivity considerations
IPSec supports multiple connections to the same VPN
SSL forms a connection between two end points such as a remote client and an enterprise network. Transactions involving three (or more) parties are not supported because traffic passes between client and server applications only.
Relative ease of use
Although managing IPSec VPNs has become easier, configuring SSL VPNs is simple in comparison. IPSec protocols may be blocked or restricted by some companies, hotels, and other public places, whereas the SSL protocol is usually unrestricted.
Client software requirements
Dedicated IPSec VPN software must be installed on all IPSec VPN peers and clients and the software has to be configured with compatible settings.
To access
Access control
IPSec VPNs provide secure network access only. Access to the network resources on a corporate IPSec VPN can be enabled for specific IPSec peers and/or clients. The amount of security that can be applied to users is limited.
| FortiOS v3.0 MR7 SSL VPN User Guide |
14 |