Planning for Deployment
Although no generic task list can serve as a true checklist to be used for preparing to implement an SSL VPN, the following is a list of several items that demand consideration during design stages, but which can be easily overlooked:
Externally accessible IP addresses—one per SSL VPN portal: Security technologies such as Network Address Translation may allow an internal IP number to be used. Also, if Air Gap technology is used, the implementation may require an appropriate IP number for each server. If multiple SSL VPN servers will be used in conjunction with a load balancer then the single Internet-accessible virtual IP number will need to be known as will the real IP numbers of the SSL VPN servers.
Externally accessible DNS name—one per SSL VPN portal: If a load balancer is being used then the externally accessible DNS name for accessing the SSL VPN will need to be known, as well as any DNS names of the real SSL VPN servers (the latter may not be needed if those...
