|
| |
| | August 2003 - Tunnel Visions ... How do SSL VPNs match up with their older IPSec cousins? |
 | | Because SSL VPNs are often accessed by computers outside a company's control--public computers are a particular challenge--vendors address their security requirements in several ways. | | | VPN client computers need strong AV and firewall protection, and admins need a way to check on the "health" of those systems. | | | For example, Check Point Software Technologies' VPN-1 is integrated with PestPatrol, and WatchGuard Technologies' Mobile User VPN with Zone Labs' ZoneAlarm. |
|
http://infosecuritymag.techtarget.com/ss/0,295796,sid6_iss21_art83,00.html
(3418 words)
|
|
| |
| | Virtual private network - Wikipedia, the free encyclopedia |
| | Such security is important because other computers local to the network on which the client computer is operating may be untrusted or partially trusted. | | | This reduces the risk that an attacker might gain access to the secured network by attacking the employee's laptop: to other computers on the employee's home network, or on the public internet, it is as though the machine running the VPN client simply does not exist. | | | Each employer would therefore want to ensure their proprietary data is kept secure, even if another computer in the local network gets infected with malware. |
|
http://en.wikipedia.org/wiki/VPN
(903 words)
|
|
| |
| | Do-It-Yourself VPNs - Business Communications Review |
| | Microsoft includes VPN software in every copy of Windows, so hundreds of millions of PCs are potential VPN endpoints, but no one knows how many have been turned on. | | | In addition to the "traditional" VPN gateways that Synergy tracks, Infonetics also counts certain firewalls, combo-firewalls, VPN-only routers, routers with hardware VPN support, and purpose-built hardware that ships in conjunction with other people's software, such as Nokia's IP Series platforms for Check Point's VPN software. | | | Two early VPN tunneling protocols are L2F, developed by Cisco, and PPTP, developed by Microsoft. |
|
http://www.bcr.com/bcrmag/2002/05/p28.asp
(3239 words)
|
|
| |
| | Security Intrusion Detection Prevention VPNs |
| | The fact that many VPN clients are installed on users' home computers, well out of the reach of the systems administration team, often means that troubleshooting and upgrading VPN systems is time consuming and a struggle for both admins and users. | | | The portable VPN router, however, does have it problems, but it is also an easy-to-use and reasonably-priced alternative for basic IPsec VPN connections. | | | Biodata VPN (Biodata)- This security gateway works for connecting remote offices to a central computer network over the Internet. |
|
http://security.ittoolbox.com/topics/t.asp?t=385&p=385&h1=385
(3242 words)
|
|
| |
| | [No title] |
| | A "transit VPN" is one which contains a router that receives routes from a "third party" (i.e., from a router which is not in the VPN, but is not a PE router), and that redistributes those routes to a PE router. | | | VPN Route Distribution via BGP PE routers use BGP to distribute VPN routes to each other (more accurately, to cause VPN routes to be distributed to each other). | | | In MPLS/BGP VPNs, existing L3 QoS capabilities can be applied to labeled packets through the use of the "experimental" bits in the shim header [10], or, where ATM is used as the backbone, through the use of ATM QoS capabilities. |
|
http://www.ietf.org/rfc/rfc2547.txt
(8477 words)
|
|
| |
| | Wired News: Why Centrino and VPNs Don't Mix |
| | The VPN incompatibility, first reported by Wired News, was initially thought to be isolated to VPN software from Nortel Networks. | | | According to Intel's website, only five VPN software clients are compatible with the new Centrino chipset, and only after a key software driver for the chipset is disabled. | | | But Intel now admits that users of other VPN systems also may be affected, although the company refuses to specify which VPNs are not supported by the Centrino chipset. |
|
http://www.wired.com/news/technology/0,1282,59050,00.html
(931 words)
|
|
| |
| | Experts call MPLS bad for 'Net |
| | The new Cisco and Juniper approaches let MPLS VPNs be established at Layer 2 of the Open Systems Interconnection's seven-layer structure, instead of Layer 3 as outlined in RFC 2547. | | | In particular, they denounce a technique for creating MPLS VPNs that was outlined in an IETF informational document - called RFC 2547 - published in 1999 by two Cisco engineers. | | | He also says the amount of configuration involved with RFC 2547 VPNs is less than that of IPSec VPNs, but that this burden is carried by ISPs, not customers. |
|
http://www.nwfusion.com/news/2001/0806mpls.html
(1437 words)
|
|
| |
| | vpns - White Papers, Webcasts and Case Studies - TechRepublic |
| | While a virtual private network (VPN) can protect the privacy of your data, it can't protect your network from viruses, spyware, or other malicious programs that may be lurking on the remote computers... | | | Rolling out an effective remote access VPN solution is typically far more complex than most companies anticipate. | | | Download this important white paper from Positive Networks to find out more about the various endpoint threats to corporate networks and how IT departments can protect their end-users when using a VPN... |
|
http://whitepapers.techrepublic.com/search.aspx?kw=vpns&tag=wpr_more&promo=300111
(1521 words)
|
|
| |
| | Business 2.0 - Web Guide - VPN (Virtual Private Networks) -e1 |
| | Includes information and links on VPN design issues, software and commercial solutions and testing and evaluation. | | | Answers some of the basic questions about what a VPN is, why your company needs one, VPN security issues, and the technologies used in deploying a VPN. | | | This Nortel Networks VPN tutorial provides a definition and overview, the technology, the benefits, solutions, a self-test and answers, and an acronym guide. |
|
http://www.business2.com/b2/webguide/0,,805,00.html
(338 words)
|
|
| |
| | VPNs |
| | Many VPN vendors make their own software to check that remote computers meet corporate security profiles before they are allowed access to the VPN. | | | Check Point and Nokia are combining their software and hardware to offer midsized businesses a VPN gateway that supports SSL and IPSec VPNs. | | | Aventail is upgrading the software that runs its SSL VPN gateways so it now supports two server applications via Windows Terminal Services or Citrix. |
|
http://www.networkworld.com/newsletters/vpn
(902 words)
|
|
| |
| | VPN: Virtually Anything? |
| | Well, certainly the goal of all VPN products is to enable deployment of logical networks, independent of physical topology. | | | Visit our VPN FAQ for further information, including a list of VPN resource sites. | | | Performance: VPN technologies add packet overhead and make extensive use of encryption, which adds processing delay. |
|
http://www.corecom.com/html/vpn.html
(1850 words)
|
|
| |
| | Penetration Testing IPsec VPNs |
| | The purpose of this exercise is to determine the type of VPN implementation (IPsec, PPTP, or SSL), the VPN vendor information and corresponding version numbers. | | | The first part of the article looks at the components of IPSec based VPNs, which use client software to connect to the VPN server as opposed to SSL based VPNs, which only use a browser. | | | This is necessary to execute a focused attack against the target VPN environment. |
|
http://www.securityfocus.com/infocus/1821?ref=rss
(1935 words)
|
|
| |
| | Corecom VPN FAQ Page |
| | SSL VPNs may or may not add client software to the desktop. | | | Network-based VPNs can speed service turn-up, increase flexibility, and scale more efficiently because they employ IP services routers -- large, robust boxes designed for use at an ISP POP or carrier CO. These platforms use "soft provisioned" virtual routers to support hundreds of customers and hundreds of thousands of tunnels on a single device. | | | The term "VPN" seems to be applied to lots of technologies and services. |
|
http://www.corecom.com/external/vpn/vpnfaq.htm
(4462 words)
|
|
| |
| | Riverstone Networks - Metro Solutions: Carrier VPNs |
| | For the provider, it extends the reach of its VPN services without the need for expensive IP VPN-capable core routers at the customer edge. | | | Likewise, providers who have invested in MPLS core router backbones and Frame Relay and ATM access networks should not have to start again from square one in order to implement new services that their customers want. | | | They place a heavy load on both the customer and provider edge routers. |
|
http://www.riverstonenet.com/solutions/carrier_vpns.shtml
(2755 words)
|
|
| |
| | Beyond Basic VPNs - Business Communications Review |
| | While many security features are becoming standard on VPNs, others are just beginning to be included (Table 2). | | | Latency was measured using 64-byte IP packets generated unidirectionally (one way, end to end) at a rate of 1 Mbps. | | | Overall, with the exception of the Adtran NetVanta 2100 SOHO VPN, all one-way latency measurements were below 1 millisecond-well within acceptable ranges for non-compromised information transfers. |
|
http://www.bcr.com/bcrmag/2002/04/p22.asp
(3269 words)
|
|
| |
| | VPNs: The Time is Now? |
| | A VPN solution, an IPSec client and a firewall combine to control access to information, while protecting against Internet intrusion. | | | As time passed, the enthusiasm for VPNs waned - the encryption technology available didn't match companies' dual expectations of high-speed performance and maximum-security requirements. | | | These performance improvements are essential in reflecting the momentum of VPN adoption. |
|
http://intranetjournal.com/articles/200110/vpn_10_03_01a.html
(922 words)
|
|
| |
| | SOHO VPNs bring secure connections to all |
| | The majority of SOHO VPNs are hardware solutions that boil down to routers loaded with software that enables tunneling over IP. | | | Fortunately, SOHO VPN vendors often package an integrated firewall with the router's VPN support. | | | A few of the more notable offerings include Intel's $899 Express 8205 VPN broadband router, WatchGuard Technologies' $599 SOHOtc router, and Perle Systems' $1,495 IOLINK (see review below). |
|
http://www.infoworld.com/articles/tc/xml/01/05/07/010507tcsoho.html
(1016 words)
|
|
| |
| | VPNs |
| | SnapGear VPN routers are hardware devices with integrated firewall, router, and VPN technology (both IPSec and PPTP). | | | OvisGate's SSL VPN Software is a standalone SSL VPN Server software for Windows. | | | VPNGuard for Microsoft VPN [Listing updated: August 26, 2004] |
|
http://www.windowsecurity.com/software/VPNs
(701 words)
|
|
| |
| | OpenVPN - An Open Source SSL VPN Solution by James Yonan |
| | In turn, this analysis has led to a subsequent strengthening of the protocol such that today, SSL/TLS is considered to be one of the strongest and most mature secure protocols available. | | | OpenVPN's principal strengths include cross-platform portability across most of the known computing universe, excellent stability, scalability to hundreds or thousands of clients, relatively easy installation, and support for dynamic IP addresses and NAT. | | | For a good conceptual introduction to OpenVPN, see the program notes for James Yonan's talk at Linux Fest Northwest 2004 -- Understanding the User-Space VPN: History, Conceptual Foundations, and Practical Usage. |
|
http://openvpn.sourceforge.net
(1443 words)
|
|
| |
| | VPN Protocols |
| | VPNC has a white paper about VPN technologies that describes many of the terms used in the VPN market today. | | | The level of standardization that an RFC reaches is determined not only by "how good" the RFC is, but by how widely it is implemented and tested. | | | Some RFCs are not solid standards, but they nonetheless document technologies that are of great value to the Internet and thus should be used as guidelines for implementing VPNs. |
|
http://www.vpnc.org/vpn-standards.html
(1169 words)
|
|
| |
| | Firewalls and VPNs |
| | VPNs are necessary because communications between sites using a public network (like the Internet) are vulnerable to an eavesdropping (or snooping) attack. | | | This often meant, software run manually to come up with a random key for communication, communicated over encrypted e-mail, the telephone, or via floppy disk. | | | Network communication, over the Internet for example, is vulnerable to "snooping" — electronic eavesdropping. |
|
http://www.spirit.com/CSI/Papers/fw+vpns.html
(2331 words)
|
|
| |
| | Building Linux VPNs |
| | Through numerous examples and proven practices, you will gain important insights into choosing a VPN solution, installing and configuring it, setting up routing, configuring firewalls, measuring performance, and much more. | | | Building Linux Virtual Private Networks offers concise, step-by-step instructions for building VPNs based on both standard protocols (IPSec, SSL, SSH, PPTP) and popular Linux VPN solutions (VTun, cIPe, tinc). | | | It explains enough about the protocols and issues to clarify the difficulties for the novice, and supplies page after page of clearly-commented examples -- the only way to learn how to make a VPN work! |
|
http://www.buildinglinuxvpns.net
(172 words)
|
|
| |
| | ITPRC - Virtual Private Networks & Encryption |
| | VPN Insider - News, resources and information on VPNs | | | Provides a large collection of white papers and other VPN related information | | | VPN Information on the World Wide Web - Collection of links to VPN information |
|
http://www.itprc.com/vpn.htm
(420 words)
|
|
| |
| | SSL VPNs: full access with maximum security - Opinion - Express Computer India |
| | SSL VPNs: full access with maximum security - Opinion - Express Computer India | | | SSL VPN solutions are used for remote and mobile access in a world where IT may not control the network, user or desktop. | | | Since it is already included in the browser, no additional client software is required, giving users the benefit of ‘anywhere access’ to Web, client/server and file sharing resources from an Internet café, airport kiosk, wireless device, or PC on someone else’s corporate network. |
|
http://www.expresscomputeronline.com/20040906/opinion02.shtml
(927 words)
|
|
| |
| | Howstuffworks "How Virtual Private Networks Work" |
| | In this article, you will gain a fundamental understanding of VPNs, and learn about basic VPN components, technologies, tunneling and security. | | | Basically, a VPN is a private network that uses a public network (usually the Internet) to connect remote sites or users together. | | | A typical VPN might have a main LAN at the corporate headquarters of a company, other LANs at remote offices or facilities and individual users connecting from out in the field. |
|
http://computer.howstuffworks.com/vpn.htm
(337 words)
|
|
| |
| | VPN White Papers |
| | VPNC has its own white paper on VPN technologies that defines VPNs. | | | VPNC's members often create reports and white papers on various topics that relate to VPN technologies. | | | High Performance VPN Solutions Over Satellite Networks, from Encore Networks |
|
http://www.vpnc.org/white-papers.html
(209 words)
|
|
| |
| | SSL VPN Appliance for Secure Remote Access - SSL VPN Remote Access - Netilla |
| | Apply for a FREE Netilla Evaluation Guide from SSL VPN Central | | | The Netilla family of products - application layer VPN appliances - are ideal for securely connecting the most complex extranet environment. | | | We believe our SSL VPN technology provides a combination of versatility, security and functionality unmatched in the marketplace. |
|
http://www.netilla.com
(339 words)
|
|
| |
| | IEC: Virtual Private Networks (VPNs) |
| | Outsourcing the VPN to a service provider can also reduce your internal technical-support requirements, because the service providers take over many of the support tasks for the network. | | | While VPNs offer direct cost savings over other communications methods (such as leased lines and long-distance calls), they can also offer other advantages, including indirect cost savings as a result of reduced training requirements and equipment, increased flexibility, and scalability. | | | Because point-to-point links are not a part of the Internet VPN, companies do not have to support one of each kind of connection, further reducing equipment and support costs. |
|
http://www.iec.org/online/tutorials/vpn/topic02.html
(469 words)
|
|
| |
| | Find VPN (Virtual Private Networks) Virtual Private Network Resources and Services |
| | Radiant Communications: cut costs and improve efficiencies with customized VPN solutions. | | | Broadband.com: Compare multiple VPN solutions from over 30 leading providers | | | Find VPN is the leading resource for businesses seeking comprehensive VPN industry news and announcements, guides, resources and virtual private network services and information. |
|
http://www.findvpn.com
(119 words)
|
|
| |
| | FreeS/WAN Project: Home Page |
| | For now the protocol is backwards compatible, but we strongly suggest upgrading to 2.01 to everyone (OE and VPN users alike). | | | This is an important release for anyone using Opportunistic Encryption (OE) as there is a small but serious change to the OE protocol. | | | To see whats different and just to get using OE as quickly as possible review our " |
|
http://www.freeswan.org
(907 words)
|
|
| |
| | Aventail Corporation |
| | Read a head-to-head review comparing Aventail SSL VPNs to Cisco and SonicWall IPSec VPNs for remote access. | | | Aventail Smart Tunneling Outperforms Cisco IPSec and SSL VPN in Performance Lab Test | | | Information Security Product Review Recommends IT Security Managers Consider Aventail SSL VPN for Remote Access |
|
http://www.aventail.com
(65 words)
|
|
|
