Professional Documents
Culture Documents
1
Virtual Private Networks
A method for creating a private network via a public network
segment (e.g. Internet).
Can be used for:
Remote Access VPN –connecting a user to a central site
Site to Site VPN – connecting two sites
Typically mandate secure connections (authentication and
encryption)
2
The challenges of VPN over VSATs
Incorrect:
VPN TCP Unaccelerated
Encryption Spoofing traffic
3
Other Solutions
Internet
Internet
Internet
5
SkyEdge example Remote Branch
Company HQ
VPN
Gateway
VPNA
Intranet servers
Encrypted
Encrypted
Encrypted
Encrypted
HTTP HTTP HTTP’ HTTP’ TCP’ TCP’ TCP’ TCP’ HTTP` HTTP HTTP
TCP TCP TCP’ TCP’ IP IP IP IP TCP` TCP TCP
IP IP IP IP IPSec IPSec IPSec IPSec IP IP IP
LAN L2 LAN L2 LAN L2 LAN L2 WAN L2 WAN L2 Sat L2 Sat L2 LAN L2 LAN L2
LAN L1 LAN L1 LAN L1 LAN L1 WAN L1 WAN L1 Sat L1 Sat L1 LAN L1 LAN L1
Company X
VPN
Gateway
VPNA
Internet
Company Y Commuter of Y
VPNA VPN
Gateway
7
Advantages of using IPSec
Standard
Not a proprietary solution
Encryption of the entire IP packet
For example, SSL encrypts only the application layer
End-to-End
No “man in the middle” attacks
Security is applied transparently to all applications …
Not just HTTP
A common implementation for hybrid networks
Not dependant on transport or access technology
8
SkyEdge VPN details
Management
VSAT – through NMS and local VSAT Web GUI
VPN Acceleration Server (VPNA) – NMS and local
9
VSAT VPN configuration screenshot
10
VPNA configuration screenshot
11
Summary
12
13