Scribd Logo
Upload

Welcome to Scribd!

  • Virtual Private Network (VPN) : BY: Sahil Sikka (0321152707) Rohit Thapliyal (0531152707)

    Uploaded by

    rohit_thapli
    27 views32 pages
    This document provides an overview of virtual private networks (VPNs). It discusses that VPNs allow users to securely access a corporate network over the internet. VPNs use encryption, authentication, and tunneling protocols to provide secure connections. The document outlines the basic components and architecture of VPNs including protocols like IPSec and PPTP, security features, and VPN appliances. It also discusses applications of VPNs for remote access and site-to-site connections and notes some cost savings and security advantages, as well as some disadvantages. Finally, it briefly discusses industries that commonly use VPNs and possible future directions for VPN technology.

    Original Description:

    Original Title

    VPN Presentation

    Copyright

    © Attribution Non-Commercial (BY-NC)

    Available Formats

    PPTX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    This document provides an overview of virtual private networks (VPNs). It discusses that VPNs allow users to securely access a corporate network over the internet. VPNs use encryption, authentication, and tunneling protocols to provide secure connections. The document outlines the basic components and architecture of VPNs including protocols like IPSec and PPTP, security features, and VPN appliances. It also discusses applications of VPNs for remote access and site-to-site connections and notes some cost savings and security advantages, as well as some disadvantages. Finally, it briefly discusses industries that commonly use VPNs and possible future directions for VPN technology.

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as PPTX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pptx, pdf, or txt
    27 views32 pages

    Virtual Private Network (VPN) : BY: Sahil Sikka (0321152707) Rohit Thapliyal (0531152707)

    Uploaded by

    rohit_thapli
    This document provides an overview of virtual private networks (VPNs). It discusses that VPNs allow users to securely access a corporate network over the internet. VPNs use encryption, authentication, and tunneling protocols to provide secure connections. The document outlines the basic components and architecture of VPNs including protocols like IPSec and PPTP, security features, and VPN appliances. It also discusses applications of VPNs for remote access and site-to-site connections and notes some cost savings and security advantages, as well as some disadvantages. Finally, it briefly discusses industries that commonly use VPNs and possible future directions for VPN technology.

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as PPTX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pptx, pdf, or txt
    of 32

    VIRTUAL PRIVATE

    NETWORK (VPN)
    BY:
    Sahil Sikka(0321152707)
    Rohit Thapliyal(0531152707)
    Traditional Connectivity
    What is VPN?
     Virtual
    Private Network is a type of private
    network that uses public
    telecommunication, such as the Internet,
    instead of leased lines to communicate.

     Became popular as more employees worked


    in remote locations.

     Gives
    users a secure link to access
    corporate network over the Internet
    Private Networks
    vs.
    Virtual Private Networks

     Employees can access the network (Intranet) from


    remote locations.

     Secured networks.

     The Internet is used as the backbone for VPNs

     Saves
    cost tremendously from reduction of
    equipment and maintenance costs.

     Scalability
    Remote Access Virtual Private
    Network
    Brief Overview of How it Works
     Two connections – one is made to the
    Internet and the second is made to the VPN.
     Datagrams – contains data, destination and
    source information.
     Firewalls – VPNs allow authorized users to
    pass through the firewalls.
     Protocols – protocols create the VPN tunnels
    Four Critical Functions
     Authentication – validates that the data was sent
    from the sender.
     Access control – limiting unauthorized users
    from accessing the network.
     Confidentiality – preventing the data to be read
    or copied as the data is being transported.
     Data Integrity – ensuring that the data has not
    been altered
    Encryption
     Encryption-- is a method of “scrambling”
    data before transmitting it onto the Internet.

     Public Key Encryption Technique.

     Digital signature – for authentication


    Tunneling
    A virtual point-to-point connection
    made through a public network. It transports
    encapsulated datagrams.
    Original Datagram

    Encrypted Inner Datagram

    Datagram Header Outer Datagram Data Area

    Data Encapsulation [From Comer]


    Tunnel Vs Transport
     Transport
    ◦ Implemented by the end point systems
    ◦ Real address to real address
    ◦ Cannot ‘go through’ other networks
     Tunnel
    ◦ Encapsulation of the original IP packet in
    another packet
    ◦ Can ‘go through’ other networks
    ◦ End systems need not support this
    VPN Encapsulation of Packets
    Types of Implementations
    Virtual Private Networks (VPN)
    Basic Architecture
    NIC VPN Setup For Web Updating

    To Internet

    VPN connection

    NIC Gateway

    VPN gateway
    Firewall

    Database
    AAA
    Server File Server
    Server
    Components of IPSEC VPN
    1. Client Authentication Certificate : Digital
    Certificate from NIC Enterprise CA
    2. VPN account : Provided by VPN Administrator
    3. VPN Client Software : Can be uploaded from
    ftp.ren.nic.in/vpn or downloads.nic.in . It can
    also be downloaded from www.cisco.com
    VPN Components
     Protocols
     Security
     Appliances
    VPN Components: Protocols
     IP Security (IPSec)
    ◦ Transport mode
    ◦ Tunnel mode
     Point-to-Point Tunneling Protocol (PPTP)
    ◦ Voluntary tunneling method
    ◦ Uses PPP (Point-to-Point Protocol)
    VPN Components: Protocols
     Layer 2 Tunneling Protocol (L2TP)
    ◦ Exists at the data link layer of OSI
    ◦ Composed from PPTP and L2F (Layer 2 Forwarding)
    ◦ Compulsory tunneling method
    VPN Components: Security
     Encryption
    ◦ Technique for scrambling and unscrambling
    information
    ◦ Unscramble – called clear-text
    ◦ Scrambled information – cipher-text
     Authentication
    ◦ Determine if the sender is the authorized person
    and if the data has been redirect or corrupted
    ◦ User/System Authentication
    ◦ Data Authentication
    VPN Components: Appliances
     Intrusion detection firewalls
    ◦ Monitors traffic crossing network parameters and
    protects enterprises from unauthorized access
    ◦ Packet-level firewall checks source and destination
    ◦ Application-level firewall acts as a host computer
    between the organization’s network and the
    Internet
    VPN Topology: What is needed?

     Existing hardware (Servers, workstations,…)


     Internet connection
     VPN - Router/Switch
     Software to create and manage tunnels
     Security Device such as firewall
    Applications: Site-to-Site VPNs
    Large-scale encryption between multiple
    fixed sites such as remote offices and central
    offices

    Network traffic is sent over the branch office


    Internet connection

    This saves the company hardware and


    management expenses
    Site-to-Site VPNs
    Applications: Remote Access
     Encrypted connections between mobile or
    remote users and their corporate networks
     Ideal for a telecommuter or mobile sales

    people.
     VPN allows mobile workers &

    telecommuters to take advantage of


    broadband connectivity.
    i.e. DSL, Cable
    Advantages
    VS.
    Disadvantages
    Advantages: Cost Savings
     Eliminating the need for expensive long-
    distance leased lines
     Reducing the long-distance telephone

    charges for remote access.


     Transferring the support burden to the

    service providers
     Operational costs
    Advantages: Scalability and security

     Flexibility of growth

     Efficiency with broadband technology

     security
    Disadvantages
    VPNs require an in-depth understanding of
    public network security issues and proper
    deployment of precautions
    Availability and performance depends on
    factors largely outside of their control
    Immature standards
    VPNs need to accommodate protocols other
    than IP and existing internal network
    technology
    Industries That May Use a VPN
     Healthcare: enables the transferring of confidential patient
    information within the medical facilities & health care provider

     Manufacturing: allow suppliers to view inventory & allow clients to


    purchase online safely

     Retail: able to securely transfer sales data or customer info


    between stores & the headquarters

     Banking/Financial: enables account information to be transferred


    safely within departments & branches

     General Business: communication between remote employees can


    be securely exchanged
    Some Businesses using a VPN
    CVS Pharmaceutical Corporation upgraded
    their frame relay network to an IP VPN

    ITW Foilmark uses VPN to provide corporate


    units in multiple sites access to its
    manufacturing units

    Bacardi & Co. Implemented a 21-country,


    44-location VPN
    Where Do We See VPNs Going in the
    Future?
    VPNs are continually being enhanced.
    Example: Equant NV
    As the VPN market becomes larger, more
    applications will be created along with more
    VPN providers and new VPN types.
    Networks are expected to converge to create
    an integrated VPN
    Improved protocols are expected, which will
    also improve VPNs.
    THANK YOU

    You might also like