Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 2 replies
  • Answers 1 answer
  • Subscribers 14 subscribers
  • Views 3884 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Is Web gateway a VPN?

MrMuishond

I'm looking into cloud based Web Gateway for laptops and other mobile devices. Our interest is focused more on protecting traffic in potentially hostile networks (like public wifi) than on controlling our users browsing.

It's not clear in the marketing literature, is web gateway implemented using an encrypted VPN to Sophos Central? Would unencrypted traffic like regular http, DNS etc be protected from eavesdroppers or misdirection while on a public network?

Or do we need a separate VPN solution to protect unencrypted traffic? (We don't need a VPN to our own network, we're looking for a cloud based solution).



This thread was automatically locked due to age.
  • 0

    HI MrMuishond, 

    It would seem that you have misinterpreted the definition of a Gateway and VPN , The VPN would mean that the traffic would be encrypted between the client and the server . As the product would log and Regulate the traffic (Web Filtering and Web protection from malicious websites). We do not use VPN to encrpt the traffic between the cloud and your gateway . This would mean that the traffic to the internet would sourced of your ISP gateway . 

    There are some VPN , TOR solutions available in 3rd Party applications, but its your risk if you could trust them not to eavesdrop on your traffic . 

    Regards,

    Aditya Patel
    Global Escalation Support Engineer | Sophos Technical Support
    Knowledge Base  |  @SophosSupport | Sign up for SMS Alerts
    If a post solves your question use the 'This helped me' link.

  • 0 in reply to Aditya Patel

    Hi Aditya, thanks for the prompt response.

    I asked the question because the iOS Web Gateway knowledgebase refers to installing VPN settings.

    So just to be 100% clear, if I have a windows laptop with endpoint protection and Sophos central web gateway installed, and on a public wifi network I browse to http:// something.com, the products don't protect me from DNS poisoning or data interception? E.g. Misdirection to a fake site?

    If not, maybe it's something Sophos should consider.

    Would web gateway work properly with a 3rd party cloud based VPN? E.g. Channelling all its traffic via that route? The iOS situation would seem to make that difficult, can't be connected to the web gateway VPN and 3rd party one simultaneously.

    Thanks

Unfiltered HTML