We are having ASA 5510 series and on which we have configured remote VPN. So user uses VPN client installed on PC and connects to ASA , he is authorised and a temporary ip address from a pool is given to him. Then he can access intarnal resources as if he is in office. But no all users have VPN client and we dont need all users to have VPN. ( virtully sit in our office ). We are in process of publishing our application on web so that users can access it. We need https for this. Ous consultant has suggested to have one enterprise server portal on which we will publish our application with SSL certificate on it. He has asked us to open 443 SSL port on firewall so that users can visit our FQDN ip address. What is the diference between VPN-Ipsec and this SSL ( https ). Which is better option ? Does ssl works at application level and VPN-Ipsec works at network layer. ?
thanx in advance