syswind model

Centralized corporate security with cost-effective branch infrastructure, IT and OT network devices, and stable data communication.

FOCUS ON EFFICIENCY AND ENTERPRISE-GRADE SECURITY

The solution aims to provide enterprise-class centralized security for multi-site businesses with an easy-to-manage on-site infrastructure, with lower capital expenditure and operational costs.

The solution allows for the deployment of only one central Palo Alto Networks NGFW firewall, while smaller sites can connect with cost-effective Teltonika industrial devices, and all site traffic can be securely routed through the central security gateway.

CENTRALIZED ENTERPRISE SECURITY WITH ONLY ONE FIREWALL

TECHNOLOGICAL ADVANTAGES
  • unified internet security
  • central policy management
  • central VPN infrastructure
  • unified access management
ECONOMIC BENEFITS

There is no need for a separate enterprise firewall, security appliance, and license infrastructure for each site.

CENTRAL CORPORATE REMOTE ACCESS WITH BRANCH VPN ARCHITECTURE

VPN ARCHITECTURES

The system uses two separate but complementary VPN solutions to provide the company with enterprise-grade remote access protection and cost-effective on-premises branch connectivity.

Enterprise security and efficiency

SECURE COMMUNICATION BETWEEN SITES

Site-to-Site VPN connections between branch offices are provided by industrial devices with native WireGuard VPN tunnel connections.

► encrypted site communication
► fast site implementation
► stable operation even with mobile internet
► low operating costs
► simple central management
► cost-effective branch infrastructure

SECURE ACCESS FOR REMOTE USERS

Remote users access corporate systems via an SSL VPN connection using the central NGFW firewall.

► centralized enterprise security
► logable and auditable access
► enterprise-level user protection
► limited privileges
► administration delegation
► simple central management

EASY AND QUICK TO INSTALL

Transparent, standardized on-site infrastructure where routing, VPN, internet and WiFi can be provided with a single device.

► fast installation and deployment
► pre-configured devices
► minimal on-site IT requirements
► standardizable site layout
► simple scalability
► easily expandable branch IT network
► native M2M/IoT connectivity

SIMPLE OPERATION

Businesses can operate the system with their own IT team using a remote monitoring solution.

► central management
► monitoring
► firmware management
► remote device access
► client VPN management
► basic monitoring
► operational tasks

TYPICAL AREAS OF USE

Ideal for companies with multiple locations and centralized architectures where operations require a unified network and cyber security.

► retail stores
► branch offices, franchise networks
► remote industrial sites, utility metering stations
► regional warehouses
► temporary pop-up sites, project offices
► vehicles and machinery
► secure FWA internet connection
► CCTV surveillance

HOW SECURE BRANCH ACCESS WORKS

IN THE SYSWIND MODEL, WE USE EVERY COMPONENT OF THE SYSTEM WHERE IT IS MOST EFFECTIVE

Palo Alto Networks provides enterprise-grade central cyber security and secure access for remote users. The Teltonika platform provides easy-to-deploy, stable and cost-effective on-premise or in-vehicle VPN connections.

With the Syswind model, businesses get a modern, scalable and easy-to-operate infrastructure with low investment and operational costs.

CENTRAL FIREWALL

► Single central security gateway to access all locations
► Recommended device: Palo Alto Networks PA-510 NGFW
► Tasks: internet breakout, VPN hub, security policy management, central internet protection
► Cybersecurity: advanced threat protection, DNS security, URL filtering

VPN CONFIGURATIONS

► The VPN connection between the sites is provided by a central WireGuard VPN server
► The sites can communicate with the center exclusively via a fast, stable and last but not least low-resource VPN connection
► It can optionally be run in a virtualization environment, on a central server or on a dedicated VPN concentrator device.

NETWORK ELEMENTS

► On-premises routing devices provide internet connectivity by connecting.
► Recommended routers: Teltonika RUTX08, RUT241, RUT271
► Tasks: routing, wired/4G/5G internet access, VPN connection, WiFi connection
► Accessories: mobile and WiFi antennas, switches, WiFi access points for IT and OT devices

ARCHITECTURE FOR SECURE BRANCH CONNECTION

ADVANTAGES OF THE SYSWIND MODEL

The solution enables businesses to provide enterprise-level cyber security to all locations managing only one central NGFW firewall. Branch offices and remote sites are connected via secure, encrypted channel using cost-effective devices, nevertheless the remote access platform provides very simple central management for the entire network. The system is quick to deploy, easy to operate, and ideal for small to medium-sized site infrastructures.

 
SYSWIND LTD.

We boost your business with innovative infrastructure solutions. Our team of experts is ready to collaborate with you to provide effective support for the development and operation of secure and efficient IT and OT infrastructure.

OTHER SOLUTIONS

Would you like to receive more information about Syswind solutions in Google searches? Set it up with one click now!

Are you ready for the next step?

Contact us today and get a free consultation!

LEARN MORE ABOUT OUR SOLUTIONS!

visit our webshop!

Syswind Ltd.'s business webshop aims to support the development of professional IT network infrastructure and telecommunications coverage in the simplest way in Hungary. We make enterprise and industrial network and security solutions available to Hungarian SMEs and large companies, and we provide IoT/M2M mobile communication connectivity tools for INDUSTRY 4.0 applications. Note the webshop is available on Hungarian only.