September 01, 2003
- Ease of Use:
- Value for Money:
- Overall Rating:
Works well with other methods of authentication.
Poor documentation lets this product down, but this is being amended.
Needs a fair amount of luck to make this box fly, but the company is set to review its ease of use.
Now in version 3.6, the Tsunami VPN appliance sports a simpler management interface and new tools for managing access rules, as well as the ability to send password expiration warnings to remote users who authenticate against NT domains.
Setting up the hardware, i.e. putting up the rack, connecting it to our test network and connecting the serial ports of the appliance for initial configuration, was physically easy. The manual was not really all that clear when it came to specifying how to configure a terminal session. It took a bit of thinking and waiting before the terminal session sprang into life. The run-through of inputting Ethernet ports, DNS entries, etc., was not as clear-cut as other boxes in the test. But we persevered and eventually won out and got the product up and running.
Once again a similar pattern to other boxes on the test manifested itself, with final configurations being made through a web browser. The interface looked friendly and seems, on the face of it, comprehensive. The first screen just showed the CPU processor usage. That was interesting enough, but we really wanted to get on with getting the box working and doing the job of a VPN.
A menu bar runs along the top of the web page showing options such as 'server,' 'users and groups' and 'access profiles.' Down the side were further options that could be selected. Users could be authenticated by an internal database or by another method such as LDAP, Radius and NT Domains. This was easier to set up than others in the Group Test.
What really got us stuck was getting file access working. This was no simple matter and took a lot longer to do than setting up links to internal web server home pages. The manual seemed rather obtuse on the subject and we would have welcomed a clearer guide on how to set this up. SafeWeb has said that normally it would guide customers through the implementation, something not open to them during the review process.
Accessing the box externally as a user was simple enough and the fact that the appliance can authenticate back to the Windows domain meant there was no need to go through a lengthy process of setting up users again.
We felt that this box was good but not outstanding as it is let down by a poor user manual and an interface lacking in intuitiveness.
SC Webcasts UK
Information Security Manager
Infosec People - Hammersmith, West London
Junior Penetration Tester, Hertfordshire, to £35k + benefits
Infosec People - England, Hertfordshire
Cyber Security Architect
CYBER EXECS - London (Greater)
SOC Analyst, Aldershot, £47-56k + package
Infosec People - Hampshire, England, Aldershot
Senior Security Engineer
Loveworklife Recruitment - United Kingdom
Sign up to our newsletters
SC Magazine UK Articles
- Tesco Bank allegedly ignored warnings of hack from Visa
- Investigatory Powers and Digital Economy Bills could threaten economy
- Updated: A million German routers knocked offline by failed Mirai botnet attack
- Gooligan ad fraud malware infects 1.3M Android users, installs over 2M unwanted apps
- Microsoft update left Azure Linux virtual machines open to hacking
- SC Awards Europe 2016 winners announcements!
- ISIS radicalises 'lone wolves' through strong social media presence
- Updated: How will Brexit affect the cyber-security industry in UK and Europe?
- 9.2 million medical records for sale on darkweb
- Microsoft Office 365 hit with massive Cerber ransomware attack, report
- The information security implications of M&A deals
- Cyber-security must reflect risk not just regulation
- ICYMI: Tesco warned; IP Bill threatens economy; German routers offline; Azure trojan; Gooligan fraud
- Data centres are on the move - where will they end up?
- 90% of ITDMs believe IAM is crucial to digital transformation success