NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

flattened's avatar
flattened
Apprentice
Sep 20, 2016

SRX5308 PCI DSS Compliance

We have a customer who is looking for a firewall to allow PCI DSS complinat VPN connections to their internal network.

 

Obviously we'd like to provide a Netgear one and the SRX5308 fits the bill physically and pricewise.

 

Are the out of the box VPN options PCI DSS compliant features (SSL or the IPSec)  - particularly due to the death in June 2016 of TLS 1.0 in the world of PCI compliance?

 

In testing on an older model I have discovered 3 main draw backs with the SSL VPN portal:

If I disable TLS 1.0 in Internet Explorer I cannot connect to the web interface on the Netgear box at all; which is useless. Would the latest firmware fix this?

The SSL interface requires Java - which is a BIG problem as they are a Chrome house and Chrome now hates Java.

Actually getting the Java add in to run at all in Internet Explorer has proved to be a pain in the a55

 

Advise me please.

 

Thanks,

Andy

No RepliesBe the first to reply

NETGEAR Academy

Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology! 

Join Us!

ProSupport for Business

Comprehensive support plans for maximum network uptime and business peace of mind.

 

Learn More