In 57160c9f2673adbbe468db137b28da4187549061, I updated
fake-juniper-server.py to use a "persistent" configuration (as already done
for fake GlobalProtect, Fortinet, F5 servers), but thne I somehow forgot to
update the actual juniper-auth test script accordingly.
Signed-off-by: Daniel Lenski <email address hidden>
The article "Why TCP Over TCP Is A Bad Idea" is very useful for explaining
why VPNs perform better when using UDP-based transport (DTLS or ESP) rather
than TCP-based transport (TLS), but unfortunately the original site is no
longer available.
> Array SSL VPN gateways provide secure remote access to
> applications, desktops, file shares, networks, and Web
> sites from a broad range of remote and mobile devices.
> Deployed at the network perimeter or in front of
> business-critical resources, the AG provides secure
> remote access for employees, guests, partners, and
> other communities of interest. SSL VPNs are ideal for
> simplifying the user experience while reducing potential
> attack vectors.
>
> Every AG SSL VPN provides a complete secure access
> feature set, including TLS encrypted connectivity,
> device validation, endpoint and server-side security,
> advanced AAA, and granular policy controls. Available
> as physical or virtual appliances, or on your choice
> of public cloud, the AG Series is ideal for businesses
> needing enterprise-wide remote access, and for cloud
> service providers needing flexible remote access to
> meet broad ranging customer requirements.
I think AG refers to the gateway series that support SSL VPN,
not to the protocol.
* PAN → Palo Alto Networks
End-users may not know of this abbreviation, which is not
used in the documentation and marketing material.
* Add Ivanti to Pulse Connect Secure
* List these protocols separately:
- Juniper Network Connect
- Pulse/Ivanti Connect Secure