What are the different types of VPN Protocols in Palo Alto?

The moment we think about the power of the public Internet as the most viable and cheap medium of fastest communication, network security comes to mind as a matter of concern. Though fast, cheap and reliable but if not properly secured it could lead to confidential data leakage, user identity exposure and misuse of credentials, password stealing etc. the digital footprints required to be hidden from prying eyes while sending data over Internet or public networks. 

VPNs or virtual private networks here come to the rescue and provide reasonable assurance to ensure their users connect in a secure manner. Data is encrypted in a VPN tunnel and hides the online presence of the sender, its physical location, and data it is sending. 

Palo Alto leading provider of network solutions and its firewall supports various types of VPNs such as Site-to-Site VPN, remote access VPN, cloud VPN, SSL VPN and double VPN. 

In this article we will learn more in detail about VPN Protocols offered by Palo Alto, their key characteristics and how to choose the right VPN for your business? 

Palo Alto VPN Protocols

Site-to-Site VPN

Main office to satellite offices connectivity is usually established with Site-to-Site VPNs. It is a preferred choice of communication where businesses utilize the internet for confidential data transmission securely instead of using MPLS communication. A Site-to-Site VPN can be used by businesses to extend its network boundary to partners, suppliers and customers where VPN is established as an extranet based VPN. Two private networks can be connected securely using a Site-to-Site secure tunnel. 

Remote access VPN

Remote access VPN is widely used by offsite users to connect in a secure manner with organization applications and information wherein all data transmitted or received is encrypted. Security is inbuilt irrespective of the user location a virtual tunnel is created between end user and enterprise network. This type of VPN can be IPSec tunnel based or SSL (Secure socket layer) based. Ideal when a remote user is connecting from their home or personal location.

Cloud VPN

On premises data centres and cloud environments can be securely connected using cloud VPNs. There another name is VPN as a service (VPNaaS). This type of VPN allows secure access to business applications, resources and data hosted onto cloud via a web interface or dedicated application. Ideal when secure access is required both for on premises applications and cloud hosted applications. 

Related: IPSec VPN Set Up – Palo Alto

SSL VPN

SSL or secure socket layer as the name suggests is employed using a security protocol or its predecessor TLS or transport layer security to encrypt data between VPN gateway and end user system. SSL VPN does not require a specialized software for its functioning and is widely available with web browsers. SSL VPNs are of two types – SSL portal VPN and SSL tunnel VPN. 

• SSL portal VPN is web page based which allows its users to access resources etc. using a secure SSL connection by providing credentials. With successful login to the portal end users can access designated applications and services. 
• In SSL tunnel VPN users can access multiple network resources not just limited to the ones accessible via browser only. Ideal for securing internet sessions of end users and secure access to organization resources. 

Double VPN

Double VPN is not exactly a VPN type rather a configuration wherein user traffic is channeled via two sequential VPN servers to enable dual level encryption. In this configuration user data is encrypted and sent over the communication channel to another VPN server which will encrypt it again before it reaches its final destination. Here security is high but at the cost of speed. Ideal for enhanced security scenarios.