Create a secure network connection over the public Internet, allowing remote users and branch offices to securely access corporate network resources.
Client-to-site VPN
SafeUTM provides the client-to-site VPN capabilities to establish a secure VPN connection from a client device to the private network.

It can help organizations to enforce security policies, control access to specific resources, manage and monitor remote user connections. That is, it provides a convenient and secure solution for remote access, enabling users to work from anywhere while maintaining the confidentiality and integrity of the organization's network resources.
SafeUTM NGFW supports various tunneling protocols including IKEv2, L2TP (IPsec) and more.

Site-to-site VPN
You can easily combine remote offices and separate networks into a single one with the help of the SafeUTM site-to-site VPN.

Features of IPsec technology implementation in SafeUTM assume two roles:

Head office – SafeUTM instance must have a public address on the Internet and accept connections from other instances (branches), network equipment, or workstations (remote users).

Branch office – SafeUTM instance connects to the Head Office and usually doesn't have a public address on the Internet. But if the Branch has a public address, then any other device can also be connected to it.

VPN monitoring
VPN monitoring feature allows administrators to monitor and manage the VPN connections of remote users.

Detailed information about each active VPN connection is available in the UI. In combination with reporting and monitoring tools, this information can help administrators to detect anomalies and react accordingly to internal security guidelines.

In some extra scenarios, a specific user can be disconnected from the VPN in one click.