Discussion Room - Pertino
-
@Dashrender said:
@ajstringham said:
@Dashrender said:
I just watched Scott's YouTube video on Pertino, not bad.
But unlike a traditional VPN solution - you need to setup each endpoint specifically in the Pertino cloud, right? This can get costly pretty fast considering the shear number of end points. Once a VPN solution is in place it's pretty much done. Granted there's a lot of upfront setup and that takes time and money sure, but I'm guessing the pay back for a small business would be under a year compared to the on going expenses of a subscription solution.
What am I missing?
No. You setup users and then when Pertino is installed they authenticate with those credentials and they're on. If you have 20 users with 60 devices total you don't have to setup for 60 devices, just 20 users. Also, a feature they added (FINALLY!) was being able to do batch adds. Used to be one at a time which was very limiting.
OK you don't have to spend the time provisioning all of the end point, but you do have to install Pertino onto all of them.
Here's a sample setup.
Corp office has 5 servers
remote office has 5 workstations.
With VPN I setup a P2P VPN between the firewalls and I'm done.With Pertino I need to install the client on 10 devices (OK no big deal) but I have a monthly charge for this forever. Perhaps Pertino isn't intended as a point to point replacement.
Not yet, it isn't. But you just need to wait on the gateway features. Remember this is a brand new product that is just out of the gate. There is a ton of functionality coming that will really change how you look at it and will make the whole ecosystem make a lot more sense to you. You are seeing only one small piece of a large vision that makes it look a lot like a traditional VPN replacement when, in fact, it is a virtual network solution in a way that you aren't picturing (and doesn't exist yet.) So choosing it today for only the features it has now might not make sense for nearly as many people who might deploy it today (or tomorrow) for the features and functionality that are coming down the pike.
But in your example here, you would not normally deploy to ten devices. Pertino is meant for every device. Every single one. Not just those outside the building. That's where the power comes in. Not that you can't do it your way, you can, but that isn't the primary idea. That's why Pertino doesn't try to call it a VPN and why describing it as a VPN can be bad. It is a VPN, but VPN in a way very different in intention from how most people picture VPNs. A really advanced, fully hosted mesh VPN has been a viable thing for decades but 99% of IT people have never experienced one and haven't grasped what all that means - like being able to completely define your network in software at run time.
-
@Dashrender said:
@ajstringham said:
@Dashrender Originally, when it was per person, it was a 3 device/person limit. If you are the IT guy and using your account or any admin account for Pertino, this turns into a problem quick. I believe they have removed that since going to the new pricing scheme. One way or another there are tradeoffs. For someone with 5 devices it's more expensive. For most people it's more cost effective. I agree with the per person scheme. Very odd but they've moved away from that.
OK this makes more since, the limits bring it in line with the costs of the device pricing seen now, only it's more usable as you mentioned.
Yes, and if you are doing unique things, call them for pricing. Their pricing schemes are based on average users. If you are doing something on the fringe, have a conversation. It's real people there, they are going to talk to you and discuss the situation. They know that per device pricing doesn't always make sense.
-
@Dashrender said:
What makes Pertino secure? How is this different from Hamachi?
To specifically answer this point, Pertino is completely secure because there is no 1:N endpoint. Everything is device to device.
Example: You put Pertino on your DC and then on a sales laptop that is roaming the world. The person with the laptop has exactly the same access to the server as he has when he is in the office. Nothing more and nothing less. Pertino does not grant access to anything the user does not already have access to. Pertino is not a directory server or providing server authentication. Pertino is simply a network connection that happens to work from anywhere, it is not restricted to your office. -
@JaredBusch said:
@Dashrender said:
What makes Pertino secure? How is this different from Hamachi?
To specifically answer this point, Pertino is completely secure because there is no 1:N endpoint. Everything is device to device.
Example: You put Pertino on your DC and then on a sales laptop that is roaming the world. The person with the laptop has exactly the same access to the server as he has when he is in the office. Nothing more and nothing less. Pertino does not grant access to anything the user does not already have access to. Pertino is not a directory server or providing server authentication. Pertino is simply a network connection that happens to work from anywhere, it is not restricted to your office.I'm less worried about the permissions on the server itself, I would assume that the server's permissions would be in effect. I'm wondering more about the security of the tunnel since it is supported by a third party.
Here's a great example of a system that used to be bullet proof, but is no longer the case: Skype. Pertino sounds exactly like how Skype was 4 years ago. End to end encryption with the Skype servers only acting as helpers in setting up the tunnel then dropping out. But the US Gov't started putting pressure on them to create a way for Skype to 'tapped' like traditional phones (worse actually) and now the Skype protocol is eavesdroppable. -
Wow - this is a plethora of information. I've read all of the posts and now have learned more than expected - I was looking for Scott's video, can you throw that link in here? I didn't see it. Thanks for all of the input, this is a great resource - now, can we take this post and file it as a "whitepaper" of sorts, or just leave it as it is for users to search for?
-
@Bob-Beatty said:
Wow - this is a plethora of information. I've read all of the posts and now have learned more than expected - I was looking for Scott's video, can you throw that link in here? I didn't see it. Thanks for all of the input, this is a great resource - now, can we take this post and file it as a "whitepaper" of sorts, or just leave it as it is for users to search for?
http://www.youtube.com/watch?v=lyFr6ThV2As
Youtube VideoI threw mine in there for good measure.
-
@bob-beatty
And it dropped it...
Youtube Video -
@Bob-Beatty said:
Wow - this is a plethora of information. I've read all of the posts and now have learned more than expected - I was looking for Scott's video, can you throw that link in here? I didn't see it. Thanks for all of the input, this is a great resource - now, can we take this post and file it as a "whitepaper" of sorts, or just leave it as it is for users to search for?
We also host weekly demos on Thursdays at 2 PM EST. Here's the latest registration link.
@dashrender In regards to the site to site configuration, that is an ongoing discussion over here. For your use case of 5 devices at each location, then it's less than $300/year and those devices are no longer location-dependent. It's a compelling story for many scenarios. Once you get a greater number of devices on the local network then there are more factors that play into the ROI.
Where Pertino really changes the game is in enabling you to instantly and securely connect seemingly disparate devices, whether physical or virtual, located behind firewalls that you don't control. Then there's the "always on" connectivity for replication, eliminating annoying timeouts, user error, yada yada yada...
And like the guys have said, today it's all about being able to easily deploy and manage networks and making it easier for your users to access the resources they need.
-
I do understand the idea behind a virtual network that runs over the actual - the ease of use for giving users access to internal network resources (heck this would be a great solution to allow companies to use AD servers in Amazon's Cloud services).
I look forward to seeing add-ons to the current product line up.
-
Whatever happened to doing these discussion rooms?