We have a customer who is looking for a firewall to allow PCI DSS complinat VPN connections to their internal network.
Obviously we'd like to provide a Netgear one and the SRX5308 fits the bill physically and pricewise.
Are the out of the box VPN options PCI DSS compliant features (SSL or the IPSec) - particularly due to the death in June 2016 of TLS 1.0 in the world of PCI compliance?
In testing on an older model I have discovered 3 main draw backs with the SSL VPN portal:
If I disable TLS 1.0 in Internet Explorer I cannot connect to the web interface on the Netgear box at all; which is useless. Would the latest firmware fix this?
The SSL interface requires Java - which is a BIG problem as they are a Chrome house and Chrome now hates Java.
Actually getting the Java add in to run at all in Internet Explorer has proved to be a pain in the a55
Advise me please.
Thanks,
Andy
Model: SRX5308|PROSAFE Gigabit Quad WAN SSL & IPSEC VPN Firewall
