Client applications are installed on endpoint computers and devices. Clients are usually installed on a managed device, such as a company-owned computer. The client supplies access to most types of corporate resources according to the access privileges of the user.
NHS client based TLS or IPSec VPN (office, home worker and mobile remote access)
With the re-deployment of staff to remote locations there may be the requirement to create a split tunnel to afford access to corporate systems as well as the internet, whilst minimising demands on your corporate network. Learn more about guidance to split tunnels.
Due to current circumstances, large numbers of GPs and other staff are working from remote locations but require access to their on-premise systems, such as DOCMAN. Historically this has been achieved using an RDP (Remote Desktop Protocol) session however following migration to HSCN this port (3389) has been blocked for security reasons. We have provided a guide to the risks and mitigation's around this topic.
Traditional VPNs rely on IPSec (Internet Protocol Security) to tunnel between the two endpoints. IPSec works on the network layer of the Open Systems Interconnection (OSI) model - securing all data that travels between the two endpoints without an association to any specific application. When connected on an IPSec VPN the client computer is "virtually" a full member of the corporate network - able to see and potentially access the entire network.
The majority of IPSec VPN solutions require third-party hardware and/or software. In order to access an IPSec VPN, the workstation or device in question must have an IPSec client software application installed.