Choosing the right remote-access VPN: Check IT List

Choosing the right remote-access VPN: Check IT List

Determining the right virtual private network (VPN) solution can be a daunting task for a small or midsized business (SMB). For the SMB, VPNs usually serve as remote-access tools rather than a wide area network (WAN) that connects multiple remote facilities. WAN VPNs tend to be used for large-scale projects.

Here are five questions to ask before you procure and implement a VPN for your SMB:

  1. Do you really need a VPN? This seems like a pretty simple question, but you would be amazed at how many companies do not ask this up front. VPNs provide remote access so employees can access corporate network assets from remote locations. You will need a VPN if you have a centralized computing environment (such as a sales database) that cannot be adequately stored, updated and modified on a host PC or laptop from remote locations. However, in many cases, the remote access is rationalized by nonbusiness reasons such as the desire to work from a home office. This is not a true business requirement and should be considered when evaluating the total cost of ownership for each option.

  2. How many remote resources require VPN access? You need to have an understanding of the number of resources requiring remote access, as the products and services available in the market generally scale to the number of supported users. Be sure to add growth factors so that you do not outgrow the VPN eventually chosen. A good rule of thumb is to assume 10%

    Requires Free Membership to View

    Login

    When you register you’ll also receive the latest news, advice and technical tips designed specifically for midmarket IT leaders like yourself. Our award-winning editorial team will give you immediate access to emerging business and technology trends.

    Scot Petersen, Editorial Director, SearchCIO-Midmarket

    By submitting your registration information to SearchCIO-MidMarket.com you agree to receive email communications from TechTarget and TechTarget partners. We encourage you to read our Privacy Policy which contains important disclosures about how we collect and use your registration and other information. If you reside outside of the United States, by submitting this registration information you consent to having your personal data transferred to and processed in the United States. Your use of SearchCIO-MidMarket.com is governed by our Terms of Use. You may contact us at webmaster@TechTarget.com.

  1. to 15% annual growth over a four-year period. I recommend you refresh after four years. Product lifecycles are shrinking dramatically, and the VPN you choose may be end-of-life (EOL) in three to four years anyway.

  2. How will remote users access the VPN? Will the users utilize their personal computers? Will the company provide laptops? These are questions that must be answered and taken into consideration when evaluating total costs. Some things to consider: If you allow end users to use their personal computers from home, there is an undeniable risk that viruses and worms can be introduced into your environment. Home computers are notorious for picking up viruses, because they are used by people who may or may not understand the risk of opening or downloading infected data. If you allow users to use their home computers, consider some form of virus or worm protection that can be loaded. If your employees are using company-supplied laptops, ensure they have virus and worm protection as well. If you are moving toward a remote computing environment, the end-client security is very critical, as a worm can destroy a network.

  3. Is sensitive data being passed over the VPN? This is another very critical question that must be answered before moving forward. If the information is critical as well as sensitive, then you will require a VPN solution that encrypts the traffic. Most VPN offerings have some form of tunneling, but the real question is, how robust are the authentication and encryption capabilities for the out-of-the box tools? How much time and resources are required to support a do-it-yourself VPN solution that requires encryption? Always remember that no matter what the vendor is touting, these are not plug-and-forget solutions.

  4. What are the available alternatives? Without going into a tremendous amount of detail, there are two main categories that you will want to look at. The first is a hosted VPN solution and the second is a do-it-yourself VPN. The questions above will help you define the initial requirements that can be used to evaluate the alternatives in each of the solution buckets. If you do not have a staff to design, install and maintain a product-based solution, look at the hosted VPN solutions. Be sure to map function vs. function, and when comparing monthly or annual costs, be sure to include the resources required to manage your own.

Robert Harrell is the National Director, Advanced Infrastructure Practice, SBC PremierServ Consulting Services provided by Callisma Inc.


This was first published in August 2005

Disclaimer: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.

Back to top