1 / 23

Virtual Private Networks

Virtual Private Networks. Why VPN. Fast, secure and reliable communication between remote locations Use leased lines to maintain a WAN. Disadvantages High Cost No flexibility. What is VPN.

evonne
Download Presentation

Virtual Private Networks

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Virtual Private Networks

  2. Why VPN • Fast, secure and reliable communication between remote locations • Use leased lines to maintain a WAN. • Disadvantages • High Cost • No flexibility

  3. What is VPN • Virtual Private Network is a private network that uses a public network (usually the Internet) to connect remote sites or users together. Instead of using a dedicated connection such as leased line, a VPN uses “virtual” connections routed though the internet.

  4. VPN Types • Remote-access • single remote network device to intranet • Site-to-site connect multiple fixed sites over a public network • Intranet -based • Extranet-based

  5. VPN Technologies • Tunneling • Authentication • Identity verification of network system. • Access Control • When an access request is presented, resource makes a decision to allow the access request to proceed or not. • Performed at tunnel endpoints.

  6. C G E H I A F D B Tunneling • Tunneling is the transmission of data intended for use only within a private, usually corporate network through a public network in such a way that the routing nodes in the public network are unaware that the transmission is part of a private network. Tunnel

  7. Original IP Header Payload New IP Header Original IP Header Payload

  8. VPN Tunneling Protocols • Layer 2 tunneling protocols • A link layer frame is placed into the payload of a protocol data unit(PDU) from some other layer, including another layer 2 frame. • Tunnel PPP frames through an IP network. • Point-to-Point Tunneling Protocol (PPTP),Layer 2 Forwarding protocol (L2F), Layer 2 Tunneling Protocol (L2TP).

  9. VPN Tunneling Protocols • Layer 3 tunneling protocols • A layer 3 frame is placed into the payload of a protocol data unit(PDU) from some other layer,or another layer 3 packet. • VPNs within an IP network • IPsec • Label switching protocol • Label is placed between layer 2 and layer 3 header. • MPLS

  10. Layer 2 tunneling protocol • Tunnel PPP frames through the internet to the home network. • Tunneling protocol • Access concentrator(Client part) • Network Server(server part)

  11. PPTP • PPP access by remote computers to a private network through the Internet 1. Remote user dials in to the local ISP network access server using PPP.

  12. PPTP 2. The PAC establishes a control channel (TCP) across the PPP connection and through the internet to the PNS attached to the home network.

  13. PPTP 3. Parameters for the PPTP channel are negotiated over the control channel, and the PPTP tunnel is established.

  14. PPTP 4. A second PPP connection is made from the remote user, through the PPTP tunnel between the PAC and the PNS, and into the private networks NAS.

  15. PPTP 5. IP datagrams or any other protocol’s datagrams are sent inside the PPP frames

  16. L2F Tunnel is constructed from the service provider. • Remote user dials in to the local ISP network access server using PPP/SLIP.

  17. L2F 2. L2F builds a tunnel from the NAS to the private network. Uses packet-oriented protocol that provides end-to-end connectivity, such as UDP, frame relay, etc. as the encapsulating protocol.

  18. L2F 3. L2F establishes PPP connection between NAS and home gateway.

  19. L2F 4. IP packets are sent over the PPP.

  20. L2TP

  21. Comparison • Performance • ISP dependence. • End-to-end security

  22. IPsec Original IP Header Payload New IP Header Security Header Original IP Header Payload • Protocol suite • AH and ESP protocol • Tunnel mode of operation • Headers added to original packet.

  23. MPLS IP Header Payload Link Layer Header MPLS Shim IP Header Payload

More Related