VPN supports at least three different modes:

• Access to remote

client connections

· Inter Connect LAN to LAN

• Control of access within an intranet

However, it would be better to find out, speak about the types of virtual private networks, to analyze things before he sleeps.

Secure VPN use cryptographic tunneling protocols necessary confidentiality (preventing snooping), sender authentication (preventing identity theft) and message integrity (preventing message alteration) to achieve the intended privacy. With proper selection, implementation and use of these techniques can provide secure communications over insecure networks. Since this selection, implementation and use are not trivial, there are many insecure VPN schemes on the market. Secure VPN technologies may also be to improve security as “security overlay” within dedicated networking infrastructures

Trusted VPN do not use cryptographic tunneling, and instead rely on network security from one hand to protect the traffic. Multi-Protocol Label Switching (MPLS) is often used to build trusted VPN

technology behind VPN

Multiple network protocols

became popular because of the evolution of VPN:

PPTP ·

L2TP ·

· IPsec

· Socks

This authentication protocols emphasize and encryption in the VPN. On Authentication allows VPN clients and servers correctly determined the identity of the people on the network. Encryption can potentially sensitive data from the public are hidden. Many manufacturers of VPN hardware and / or software products have evolved. Unfortunately immature VPN standards mean that some of these products are not compatible.

VPN tunneling: VPN technology is based on the idea of tunnel is based. Tunneling network is to establish and maintain a network connection logic. In this connection, the packets are constructed in a format specific VPN protocol encapsulated to another database or carrier protocol, then transmitted between VPN client and server, and finally – on the side of the front enclosed).

two types of VPN tunneling

VPN supports both voluntary and compulsory tunneling. The two types of tunnels can be found in the practical application. In voluntary tunnel , manages the VPN client connection. The client first connects to the provider network provider (ISP in the case of Internet VPNs). Then create the client application the VPN tunnel to a VPN server for this connection. In the compulsory tunneling , managing the provider network operator to configure the VPN connection. If the customer carries out a regular communication with the carrier, the carrier again immediately brokers a VPN connection between the client and a VPN server. From the perspective of the client, VPN connections are established in a step required in the two-step procedure for voluntary tunnel.

compulsory tunnel VPN client authenticates and staff built with special VPN servers using the logic in your device dealer. The network device is sometimes referred to as the VPN Front End Processor (FEP) (also Network Access Server (NAS) or Point of Presence (POPs) Server ). Compulsory tunnel hides the details of the VPN server connectivity and VPN clients move efficiently control tunnel, the ISP’s customers. In return, service providers should bear the burden of installation and maintenance of EFF.


VPN tunneling protocols

Several interesting

network protocols have implemented specifically for use with VPN tunnels. The three most popular VPN tunneling protocols listed below continue to compete with each other for acceptance in the industry. These logs are generally not compatible.

Point-to-Point Tunneling Protocol (PPTP)

Several companies have worked together to create the PPTP specification. People generally associate PPTP with Microsoft because nearly all flavors of Windows include support for clients for this protocol. First versions of PPTP for Windows by Microsoft contained security features that some experts say, were too weak for serious use. Microsoft is building to improve its PPTP support, though.

Layer Two Tunneling Protocol (L2TP)

original competitor PPTP VPN tunnel L2F, a protocol primarily in Cisco products implemented. In an attempt to L2F, the best features of PPTP and to improve it have been combined to create the new standard called L2TP.

Internet Protocol Security (IPsec)

IPsec is actually a collection of several protocols. It can be used as a complete VPN protocol, or it may simply serve as the encryption process within L2TP or PPTP. IPsec is the network (layer three) in OSI.

Secure VPN

The most important part of a VPN solution, the security, the nature of VPNs – putting private data over public networks – a cause for concern about possible threats to data and the impact of the loss of data when a virtual private network for all types threats to security by providing security services in the areas needs to respond:

authentication – Authentication is the process of ensuring that the user or system the user who claims to be, there are many types of authentication mechanisms, all the work of one or more of the following principles: a login name, password, token, key card, fingerprint, retina scan. A weak authentication uses one of these elements, usually a simple login sequence / password, but a strong authentication combines at least two authentication components from different areas.

presentation – The encryption is based on two elements: an algorithm and a key is an encryption algorithm, a mathematical function that combines data with the sequence of digits in a key to produce the ciphertext. There are several types of encryption with varying degrees of complexity, as measured by the length (bits) cryptographic keys such as Advanced Encryption Standard (AES), RSA, elliptic curve cryptography (ECC).

Transportation – The change of data packets in a network is an affront to the integrity of the data. Message authentication is used the process to ensure that received messages come from the alleged source and has not changed

non-repudiation – Non-refoulement is a way to ensure that an e-mail has been sent and received by the specified parties. This protects both parties to ensure that neither the sender nor the recipient can later claim not occur, the transaction that is critical not only as to contracts, but also for online sales of digital products such as music and entertainment.


Unfortunately

VPN technology is not enough reliable evidence of who has access to the data at each end of the tunnel without strong authentication built to provide information protected as it passes through the network are covered in the wrong hands. However, authentication solutions from RSA Security significantly reduce this risk by outside users several forms of identity assurance that they know who they claim to be, before they access permission to submit.

VPN for Remote Access VPN-A supports the same services Intranet Extranet / WAN as a classic, but VPNs are popular for their ability to support remote access service won. In recent years many organizations have the mobility of its staff by more employees to telework, where staff continue to travel and a growing need for increased stay connected with the enterprise network. Typically offer a company to implement a large remote access VPN needs some form of Internet dial-up account to their users using a service provider (ISP). The telecommuters can then dial a 1-800 number to access the Internet and use their VPN client software to access the corporate network. It can be best used when a company remote access to a large firm with hundreds of people in the area of distribution needs. Remote Access VPN allows secure, encrypted connections between a private company network and remote users through a third party service provider. Overhead maintaining such a system internally, with the possibility of higher long distance charges incurred by travelers is coupled, make sure VPN is a viable option.

VPN Internet

Expansion

VPN Remote Access architecture provides a network to the remote LAN to achieve. A server-server VPN connection connects two networks into an intranet or extranet are extended rather than a client-server connection. In order to implement a limited access to individual subnets on the private network, Intranet use VPN technology. In this mode, the VPN client to a VPN server to connect as the gateway to the computers on the subnet behind the actions, but it takes advantage of security features and manageability of VPN technology.

SERVICES

VPN

promise two main advantages over competing approaches – cost savings from A-VPN reduces the cost to the need for expensive long distance leased lines, removed with the help of private networks, virtual organization needs only a relatively short dedicated connection to the service provider was a local be leased line (much cheaper than long distance calls).


Another way

VPN is to reduce costs and the need for long-distance charges for remote access VPN clients, which reduce your call to the access point nearest service provider but in some cases, it requires a long distance call, but in many cases, local call will suffice.

A third more subtle way that VPNs must reduce costs by relieving the burden of support for VPNs, service providers rather than the organization of the dial-in access, in the service supports the thesis can be much less support for the costs a domestic company, as the cost of public service is used between potentially thousands of customers.

scalability – The cost for an organization of traditional leased lines reasonable at first glance, but may possibly increase exponentially as the organization grows. A company with two subsidiaries, such as the provision of a dedicated line at the two sites to connect. In a third branch must go online, are just two additional lines needed to establish a direct connection here to the other two. But as an organization grows and more and more companies should be added to the network, the number of leased lines required increases dramatically. Four branches will have six lines for full connectivity, five offices require ten lines, and so on. Mathematicians call this a “combinatorial explosion”, and in a traditional WAN this explosion limits the flexibility for growth. VPNs that use the Internet to this problem by simply avoid, in the geographically distributed access already.

compared to leased lines, VPN offer greater global Internet , because the Internet access points in many places where dedicated lines are not available. The only way to successfully deploy the appropriate VPN for any organization to the needs of your company and its customers remotely monitored. At this point you must evaluate the equipment is used at both ends, the operating systems on both ends, the Internet service at both ends, the increasingly complex software applications. Performance, safety and limitations of existing infrastructure always dictate how you proceed. Often, this process can be short and simple, but there are a number of unforeseen problems that arise when you do not carefully evaluate these elements. Whether internally or by vendors, it is important to evaluate your existing systems and requirements, first, to save time and money later. When you finish this part of the evaluation, it is a much simpler task of choosing between different VPN tests. This is often something in the original mandate of some VPN approach, if so your choice is simple to define. When you have placed very few restrictions on your existing technology to a decision of the KING , performance and safety requirements.


DISADVANTAGES

the hype, the historically to VPNs, the possible pitfalls and weaknesses in the VPN model can be easily forgotten. These four concerns with VPN solutions are often high as 1 VPNs require an in-depth understanding of public expenditure and network security precautions necessary when using VPN. 2. Availability and performance of an organization-wide area VPN (over the Internet in particular) depends on factors largely beyond their control. 3. VPN technologies from different manufacturers may not work well due to immature standards. 4. VPNs need to accommodate protocols other than IP and existing (“legacy”) internal network technology. In general, these four factors, the hidden costs of a VPN solution. While proponents VPN cost savings that the main advantage of this technology, called critics hidden costs as the biggest disadvantage of VPN.


CONCLUSION

:

successfully VPN in the future depends largely on the dynamics of the industry. Most of the value of VPNs is the ability for companies to save money. If the cost of long distance calls and leased lines continue to decline, fewer companies can switch to the need for remote access to VPNs. Conversely, if VPN standards solidify and manufacturer products fully interoperate with others, should increase the attractiveness of the VPNs. The success also depends on the VPN functionality of intranets and extranets to fulfill their promises. Companies are struggling to measure the cost savings of their private networks, but it can be shown that to deliver such an important value, the use of VPN technology can also increase internal. VPN does not provide network services that are not already provided by other mechanisms. However, a VPN uses a unique combination of technologies to improve traditional approaches promises. A well-designed VPN should include the following: security, reliability, scalability, network management and policy management

VPN Tunnel