Case Studies

Site-to-Site VPN with Failover and Whitelisting

Grandson Technologies Pvt. Ltd., Trivandrum, Kerala.

Grandson Technologies Pvt. Ltd. was looking for a reliable solution to securely connect their 2 offices which are located at different locations to extend their company’s network, making computer resources at one location available to employees at other location. Their 2nd requirement was to provide automatic failover for the point-to-point connectivity which is used to connect their office locations. Other requirements of the client was each offices should be protected from external threats like viruses, malwares and hackers that are looming in the internet and also they should restrict the web usage activities and internet activities of the employees when they are in office. The client was expecting reliable low cost solution with no hassle of yearly license renewals.

Their network integrators consulted us seeking a solution for these requirements. With our expertise in IT security and experience in working with pfSense , we came with a solution which was tailor-made to match the client requirements. .

With pfSense as gateway firewall on each office we were able to set a site-to-site VPN between client’s propriety networks making computer resources at one location available to employees at other location and with our expertise in pfSense we were able to setup a failover for the primary tunnel so that employees can work seamlessly over secondary tunnel even in case of primary connections got failed.

Using pfSense as gateway firewall on each office, client was able to achive much needed IT security aspects to protect their network with features like

• Multi-WAN site-to-site VPN with redundancy.
• WAN failover with seamless connectivity to ensure minimal downtime during Internet outages.
• Gateway Security, shielding internal network from virus, malwares and hackers.
• Router functionalities like NATing, DHCP and DNS.
• Restricting employees web usage activities by blocking certain categories and domains.
• Control access to Internet by placing employees in different profiles.
• Comprehensive network monitoring and reporting options.
• IT security functionalities which ensure compliance with cyber security laws of the land.
• Savings in total cost of ownership since solution does not have any annual license renewals

Highlights
• Providing Site to Site VPN connectivity with automatic WAN failover.
• Provides a shield which used to protect the internal network from virus, malwares and hackers.
• TRAI complaint user activity log archive.
• Network monitoring and reporting options.
• A reliable low cost solution with no hassle of yearly license renewals.