VIRTUAL PRIVATE NETWORK (VPN)
Secure Remote Access

What is a Virtual Private Network?

Commonly known as a VPN, it is a group of two or more computers, typically connected to a private network that communicates "securely" over a public network, such as the Internet. Most security experts agree that VPNs include encryption, strong authentication of remote users or hosts, and mechanisms for hiding or masking information about the private network topology from potential attackers on the public network.

What are the three elements of the VPN?

• Remote user identity authentication
• Secure private transmission of data (avoiding unauthorized listeners)
• Verification of unadulterated data transmission

What are the trends driving VPNs?

A convergence of business, social, and technology trends are driving the dispersion of today's enterprise into a distributed workplace:

• Rapid proliferation of powerful, affordable PCs and other small office technologies.
• Emergence of the Internet as the global data communications network for linking geographically dispersed locations.
• Demand by employees for flexible work arrangements in response to growing commute times and family needs.
• Drive for improved productivity and reduced costs by companies.
• Need for recruiting and retaining talent located outside the confines of the local geographical area.
• Explosive availability of affordable, broadband Internet connections (DSL, cable and wireless).

What are the advantages of using VPNs?

Cost Savings - By leveraging third party networks with VPN, organizations no longer have to use expensive leased or frame relay lines and are able to connect remote users to their corporate networks via a local Internet service provider (ISP) instead of via expensive 800-number or long distance calls to resource-consuming modem banks.

Security - VPNs provide the highest level of security using advanced encryption and authentication protocols that protect data from unauthorized access.

Compatibility with Broadband Technology - VPNs allow mobile workers, to take advantage of high-speed, broadband connectivity, such as DSL and Cable, when gaining access to their corporate networks, providing workers significant flexibility and efficiency.

Firewall-based VPN Systems
Firewall based VPNs, such as those offered by Netgear and Symantec take advantage of the firewall's security mechanisms, including restricting access to the internal network. They also perform network address translation, satisfy requirements for strong authentication, and serve up real-time alarms and extensive logging.

Typical VPN Applications

Site-to-Site VPNs extend the classic WAN by providing large-scale encryption between multiple fixed sites such as remote offices and central offices, over a public network, such as the Internet.

Remote Access VPNs permit secure, encrypted connections between mobile or remote users and their corporate networks via a third-party network, such as a service provider.

VPN Clients enables mobile users to securely "tunnel" back to the main office, while the office maintains VPN tunnels to other remote sites (up to five total tunnels!).