ipUnplugged and NetMotion grant wireless users room to roam

Free Newsletters

Log-in | Register

ipUnplugged and NetMotion grant wireless users room to roam Roaming solutions take different tacks in effectively keeping mobile workers securely connected
By Victor R. Garza November 21, 2003			E-mail Printer Friendly Reprints Slashdot It!

When you weigh just the benefits of mobility, flexibility, and productivity, going wireless is a no-brainer. But factor in roaming issues, spotty coverage on the corporate campus, and security vulnerabilities, and the decision can get complicated.

Free IT resource

Virtualization Insights from Top Experts - Learn how virtualization gets real!

Sponsored by Microsoft

I looked at roaming solutions from ipUnplugged and NetMotion designed to solve these problems. Although the products take slightly different tacks, they share the same goal: to provide secure, continuous connectivity to corporate applications over inherently insecure and disparate wireless networks.

Both solutions appear equally matched when it comes to meeting subnet roaming expectations, enabling wireless sessions to move across router boundaries without breaking the connection. Both have components that can be deployed on pretty much any Intel-based hardware; both require a software client.

However, they also share a couple of major flaws. They support only a Windows-based mobile infrastructure and are limited to networks that can transport IP.

Overall, NetMotion Mobility 5.01, a software-only solution, has a larger array of authentication infrastructure support to manage users and groups. However, it’s also much more expensive than a similar deployment with ipUnplugged’s combined Roaming Gateway, Server, and Client offering.

ipUnplugged

ipUnplugged leverages standards-based MobileIP and IPSec technology to create a solid, seamless roaming solution using what is truly a mobile wireless VPN. Most interesting is that moving over different media types appears truly seamless. Although ipUnplugged does not offer application persistence to the degree that NetMotion does, it is still a serious and reliable WLAN mobility solution.

A typical deployment of ipUnplugged consists of a Roaming Gateway appliance, the Roaming Server —both of which are managed via a Web-based interface —and the Roaming Client.

During my tests, I didn’t have a problem with roaming as much as I did with application persistence. Unlike NetMotion, ipUnplugged doesn’t proxy for a client, so when a client application is cut off from its server, the client’s virtual adapter is still up, but the session is no longer there. Depending on the robustness of the application, it may several minutes before it terminates.

Getting up and running with the Roaming Server was a fairly quick process. The server is the central location for network configuration, security, and client management via a Web-based interface. Annoyingly, ipUnplugged requires at least an SMTP infrastructure to function properly.

During installation, the Roaming Server installs its own RADIUS (Remote Authentication Dial-In User Service) server where users and groups are managed. Although I could have also tied my RADIUS server to that of the Roaming Server’s to support guest users, the ipUnplugged installation provides all subsequent authentications. Unfortunately, ipUnplugged supports only RADIUS and SecureID but no other authentication methods.

The Roaming Gateway forwards traffic from app servers to the Roaming Client over whatever transport media may be present, including GPRS, and CDPD (Cellular Digital Packet Data). The gateway, which typically sits between the enterprise network on either the Internet or on a DMZ (demilitarized zone), has a built-in stateful firewall. The server automatically generates the firewall rules during the process of creating the gateway.

I was up and running fairly quickly on the Roaming Gateway. The gateway provides a portal or a walled garden for users not using the client software. The walled garden restricts WLAN guests to specific Web sites and can limit other protocols via the firewall.

After the Roaming Gateway is installed, the Roaming Server sends an e-mail to each user with information on how to log on and download the Roaming Client. This client software installation method is not ideal for an enterprise deployment. The vendor did provide me with a command-line workaround.

The Roaming Client is unobtrusive and virtually transparent to the end-user. It manages both the security and type of media connection to the corporate infrastructure. When on the corporate LAN, the client connects via unencrypted connection. When on insecure media, such as a public hot spot, the client encrypts the connection and maintains a solid roaming connection back to the corporate landscape.

There is no way to create reports of any kind regarding clients except via RADIUS accounting, nor is there a way to gather client statistics via the Web-based interface. The RADIUS server can provide client information on session tine and byte/packets information. However, the Roaming Server does provide detailed logs of server statistics.

Continued
1 | 2 | Next Page »

ipUnplugged Roaming Gateway, R3.4.3

ipUnplugged, ipunplugged.com

Very Good 7.9

criteria	score	weight
Roaming	9	25%

Security	9	25%

Manageability	5	15%

Scalability	7	15%

Setup	8	10%

Value	8	10%

Cost:
$8,000 for 100-user configuration; $34,000 for 500 users

Platforms:
Server: Linux; Clients: Windows 2000/XP, Tablet PC, Pocket PC 2002; Gateway; imOS, an optimized version of OpenBSD

Bottom Line:
ipUnplugged's easy-to-manage software/hardware wireless-mobility solution leverages MobileIP and IPSec. It offers solid wireless mobility across different networking media but needs more robust authentication capabilities and better client-deployment methods.

About our Reviews and Scoring Methodology

NetMotion Mobility v5.01

NetMotion, netmotionwireless.com

Very Good 7.3

criteria	score	weight
Roaming	9	25%

Security	8	25%

Manageability	5	15%

Scalability	6	15%

Setup	8	10%

Value	6	10%

Cost:
$25,624 for 100-user configuration; $95,000 for 500 users

Platforms:
Mobility Server: Windows 2000/2003 Server; Clients: Windows 98 or later, Tablet PC, Pocket PC: Web browser required for policy-server management

Bottom Line:
NetMotion's software-based continuous networking technology creates a seamless connection back to the corporate LAN. Military-grade encryption secures mission-critical data. High price and fragmented management interfaces detract from the offering.

About our Reviews and Scoring Methodology

E-mail

Printer Friendly

Reprints

Slashdot It!


	Victor R. Garza is a senior contributing editor at InfoWorld. • Victor R. Garza's Weblog

TOP NEWS:

» Parts of San Francisco network still locked out
Administrators are still locked out of the city's VoIP system and LANs within the Sheriff's Department and the Recreation & Park Department

» Intel says Moblin update coming soon
Open-source effort set for mobile Linux should have an alpha-level release in a few weeks

» Are virtual firewalls a solution for VM security?
Virtual firewalls can be a useful security tool, but their efficacy depends heavily on how you have set up your networks

» Ubuntu to unveil new version of Launchpad next week
Ubuntu's beta community still has a long way to go to achieve the popularity of competitors such as SourceForge.net

» Oracle unveils access management suite
Oracle's suite includes a new server that provides controls to fine-tune user privileges

» 5 ways the iPhone 3G still lags in enterprise
Despite Apple's improvements, its iPhone 2.0 software remain less competent and less tested than its BlackBerry and Windows Mobile counterparts

Solutions to the Toughest IT Challenges in Remote Offices
Though small in size, remote offices face many of the same IT challenges as larger central offices. This Webcast zeroes in on the top line challenges to deliver information that can provide immediate benefits to your business. Sponsor: AMD and Dell

» Click here to view this Webcast

Zombie PCs Are Attacking Your LAN
A recent study showed that malware-infected zombie PCs are now a bigger threat to ISPs and Web infrastructure than DoS attacks. As this brand new IT Strategy Guide explains, an increased use of peer-to-peer techniques by the attackers has made it harder to fight back. Download now, compliments of Verio:

» Click here to download now

- Special Advertising Partners -

WHITE PAPERS

Are you being asked to do more with less? - Is providing remote access for some users simply too expensive? Download this research report to learn how companies can...
They Can't Steal What You Don't Have - Citrix Online recently conducted a comprehensive survey on remote access and security to find out how organizations are ...
A Closer Look at SaaS Purchasing Behaviors and Attitudes - Citrix Online recently conducted a survey on the subject of SaaS purchasing behaviors and attitudes by gathering feedback...
Configuration Assessment: Choosing the Right Solution - Configuration assessment lets businesses proactively secure their IT infrastructure and achieve compliance with important...
SGI Adaptive Data Warehouse: Building a High-End Oracle Data Warehouse - Data continue to grow while queries are becoming increasingly complex. Through participation in Oracle's Optimized Warehouse...
Five Steps to Secure Outsourced Application Development - How can you ensure that code delivered to you by your offshore partner is secure? This Whitepaper will cover the risk in...

» Technology White Papers Library

Technology White Papers by Topic

Technology White Papers E-mail Alert

•

Application development

•

•

•

•

•

•

•

•

Find out when the latest white paper is available:

INFOWORLD MARKETPLACE

Deliver REMOTE SUPPORT Easily. Try WebEx FREE! - DOWNLOAD WEBEX SUPPORT CENTER FREE! Deliver efficient, effective support. CRUSH SUPPORT LOG JAMS!
Migrating to an IP-VPN? XO Can Make It Happen - Learn the five critical success factors with a free whitepaper from XO Enterprise Solutions.
Sign up to TRY WEBEX SUPPORT CENTER FOR FREE! - Get your FULL FEATURED trial here. Share documents and applications, address support challenges.
IP Networks Boost Secure Health Communications - AT&T provides secure communication to keep health care moving forward.
Why a CMDB? - IT best practices (ITIL) have shown the benefits of a CMDB. Click for whitepapers.

» BUY A LINK NOW

TECH WATCH

What's the 411 on GOOG-411?
Just as Google has become synonymous with "performing a Web search," 411 is understood to mean "information" -- as in "what's the 411?" I was thus surprised to discover, from a billboard, no less, that the king of search is taking on the ...

Apple HTML source reveals 'iPhone Extreme'
"This one's a stretch..." reports AppleInsider. Um, yeah. Reporting on HTML code sightings of product names could be called a stretch, but iPhone Extreme has a ring to it. Now, that sounds like the product Apple should have released first, rather ...

COLUMNISTS

Unified under law

(InfoWorld) - In the litigious world we live in, deploying a unified communications platform in your enterprise could...

» MORE COLUMNISTS

MORE INFOWORLD BLOGS

Open Sources

Product Management
When I joined MySQL four years ago, there was quite a lot of debate about product management. We didn't actually have ...

Zero Day

Botnet herders tending smaller flocks
New research backs up the theory that botnet operators are keeping their networks smaller in a continued effort to keep ...

• Advice Line
• Database Underground
• The Deep End
• Enterprise Mac
• Geeks in Paradise
• Grid Meter
• The Gripe Line
• InfoWorld Daily
• Inside IT
• IT Troubleshooter
• ITXtreme
• Open Sources
• ProdBlog
• Real World SOA
• Reality Check
• Security Adviser
• SMB IT
• The Storage Network
• Tech Watch
• Virtualization Report
• Zero Day

RESOURCE CENTER	advertisement
Ads by techwords beta See your link here

GOVERNMENT IT & POLICY
•	'If you don't go after the network, you're never going to stop these guys. Never.'
•	From the State Department, All the News for Inquiring Minds
•	TechPresident, the Internet Citizenry's New Consensus Taker

Sponsored Technology Links
SGI - SGI Adaptive Data Warehouse: Building a High-End Oracle Data Warehouse Microsoft - Learn about the software-based VoIP solution from Microsoft. Vizioncore - Complete Solutions for Virtual Server Management Microsoft - Meet Windows Server 2008. The server unleashed. HP - Whitepaper: How IT Quality Managers Respond to SOA Change Xerox - Experience the colorful side of business at www.frugalcolor.com IBM - Webcast: Take control of your content- leverage MOSS HP - Whitepaper: Software Quality Management for SOA AT&T - Thinking about IMS AT&T - Factors to consider when comparing DSL or Cable AT&T - Going mobile with today's technology AT&T - What to expect from a Technology Assessment. Polycom - Telepresence For The Enterprise GoToMyPC - Research Brief: Providing Secure and Cost-Effective Remote Access AppAssure - Keeping the E-Mail Flowing Tripwire - Secure your virtual and physical environments with the same software. CA - Efficient - Flexible - Compliant PGP - Is Your Data Safe? Novell, IBM, and Intel - Solution for Open Virtualization Provides Server Consolidation Curl - IT Guide: Rich Internet Application (RIA) Security Symantec - Whitepaper: Secure, recover, and archive critical information Microsoft - {Open Source} Heroes Happen Here Symantec - Whitepaper: Protecting Microsoft(R) Applications Riverbed - Five Ugly Truths about WAFS and Caching InterSystems - Use Ensemble - quickly create composite applications. Cirba - Advanced Workload Analysis Techniques		Rackspace - Go Green Without Sacrificing Server Performance CA - Manage your IT more effectively. AT&T - Measuring mobile productivity CA - Plan IT better, Manage IT better. AT&T - Refine your company's plan for a Business Disruption Event Cirba - Consolidating Workloads onto Mainframes AT&T - Class of Service: Myths and Misconceptions AT&T - Enhancing security through Quantum Cryptography Riverbed - Wide Area Data Services Microsoft - Microsoft Forefront makes defending your systems easier. Learn how. HP - Explore the interactive whitepaper: Rightsizing Blades for the mid-market. Symantec - Webcast: Beyond AntiVirus AMD - Renowned Engineering Institution Chooses AMD Processor-Based Servers AMD - Watch this flash demo of the Quad-Core AMD Opteron Processor EMC - EMC and VMware help you build your virtualized infrastructure. AMD - HP and Oracle deploy unbreakable computing infrastructure Qwest - Learn how Qwest voice and data solutions can save you time. MKS - The Power of UNIX/Linux on Windows with MKS Toolkit Vision Solutions - Is your smaller organization ready for High Availability? Vision Solutions - Is system maintenance doing more harm than good? HP - NEW HP LaserJet P4014n printer Starting at $699 after $100 IS. HP - HP LaserJet M3035 MFP series Starting at $1,599. SHOP NOW HP - Speed, agility, flexibility - The HP BladeSystem c-Class. Nokia - Restore Your Mobile Devices With One Click Oracle - The Power of Two with SOA and BPM

	HOME NEWS BLOGS PODCASTS VIDEOS TECHNOLOGIES TEST CENTER EVENTS CAREERS	About \| Advertise \| Awards \| RSS \| Contact Us
Copyright © 2008, Reprints, Permissions, Licensing, IDG Network, Privacy Policy, Terms of Service. All Rights reserved. InfoWorld is a leading publisher of technology information and product reviews on topics including viruses, phishing, worms, firewalls, security, servers, storage, networking, wireless, databases, and web services. CIO :: ComputerWorld :: CSO :: Demo :: GamePro :: Games.net :: IDG Connect :: IDG World Expo Industry Standard :: IT World :: JavaWorld :: LinuxWorld :: MacUser :: Macworld :: Network World :: PC World :: Playlist