DrayTek VPN Solution. Outline What is VPN What does VPN Do Supported VPN Protocol How Many Tunnels does Vigor Support VPN Application Special VPN Application.

Slides:



Advertisements
Similar presentations
1 Chapter 2: Networking Protocol Design Designs That Include TCP/IP Essential TCP/IP Design Concepts TCP/IP Data Protection TCP/IP Optimization.
Advertisements

Securing Remote PC Access to UNIX/Linux Hosts with VPN or SSH Charles T. Moetului WRQ, Inc. (206)
Setting Up a Virtual Private Network Chapter 9. Learning Objectives Understand the components and essential operations of virtual private networks (VPNs)
4.1 Configuring Network Access Components of a Network Access Services Infrastructure What is the Network Policy and Access Services Role? What is Routing.
11 TROUBLESHOOTING Chapter 12. Chapter 12: TROUBLESHOOTING2 OVERVIEW  Determine whether a network communications problem is related to TCP/IP.  Understand.
Operating Systems Concepts 1/e Ruth Watson Chapter 11 Chapter 11 Network Maintenance Ruth Watson.
Module 5: Configuring Access for Remote Clients and Networks.
SCSC 455 Computer Security Virtual Private Network (VPN)
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 11: Planning Network Access.
Guide to Network Defense and Countermeasures Second Edition
Module 10: Configuring Virtual Private Network Access for Remote Clients and Networks.
Hardware Firewalls: Advanced Feature © N. Ganesan, Ph.D.
K. Salah 1 Chapter 31 Security in the Internet. K. Salah 2 Figure 31.5 Position of TLS Transport Layer Security (TLS) was designed to provide security.
MCDST : Supporting Users and Troubleshooting a Microsoft Windows XP Operating System Chapter 14: Troubleshooting Remote Connections.
Hands-On Microsoft Windows Server 2003 Administration Chapter 11 Administering Remote Access Services.
70-270, MCSE/MCSA Guide to Installing and Managing Microsoft Windows XP Professional and Windows Server 2003 Chapter Twelve Implementing Terminal.
Virtual Private Networking Karlene R. Samuels COSC513.
Topics 1.Security options and settings 2.Layer 2 vs. Layer 3 connection types 3.Advanced network and routing options 4.Local connections 5.Offline mode.
Remote Networking Architectures
Network Address Translation, Remote Access and Virtual Private Networks BSAD 146 Dave Novak Sources: Network+ Guide to Networks, Dean 2013.
Virtual Private Networks (VPN’s)
70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network Chapter 10: Remote Access.
Virtual Private Network prepared by Rachna Agrawal Lixia Hou.
Understanding VPN Concepts Virtual Private Network (VPN) enables computers to –Communicate securely over insecure channels –Exchange private encrypted.
Worldwide Product Marketing Group United States - Spain - UK - France - Germany - Singapore - Taipei Barricade™ VPN Broadband Routers (4 and 8 port)
Microsoft Windows Server 2003 TCP/IP Protocols and Services Technical Reference Slide: 1 Lesson 23 Virtual Private Networks (VPNs)
1 L2TP OVERVIEW 18-May Agenda VPN Tunneling PPTP L2F LT2P.
Day15 IP Space/Setup. IP Suite of protocols –TCP –UDP –ICMP –GRE… Gives us many benefits –Routing of packets over internet –Fragmentation/Reassembly of.
Load-Balance/Route Policy Advanced Routing. Outline How does it Work – When matching criteria, send via the route What does it Do – 2 real usage examples.
Module 3: Planning and Troubleshooting Routing and Switching.
Scenario & Hands-on 7-1 VPN Configuration-PPTP
Configuring Routing and Remote Access(RRAS) and Wireless Networking
CHAPTER 2 PCs on the Internet Suraya Alias. The TCP/IP Suite of Protocols Internet applications – client/server applications The client requested data.
Module 8: Configuring Virtual Private Network Access for Remote Clients and Networks.
12-Sep-15 Virtual Private Network. Why the need To transmit files securely without disclosing sensitive information to others in the Internet.
70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network Chapter 12: Routing.
Objectives Configure routing in Windows Server 2008 Configure Network Address Translation 1.
Remote Access Chapter 4. Learning Objectives Understand implications of IEEE 802.1x and how it is used Understand VPN technology and its uses for securing.
11.59 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 11: Introducing WINS, DNS,
Objectives Configure routing in Windows Server 2008 Configure Routing and Remote Access Services in Windows Server 2008 Network Address Translation 1.
Module 12: Routing Fundamentals. Routing Overview Configuring Routing and Remote Access as a Router Quality of Service.
VIRTUAL PRIVATE NETWORK By: Tammy Be Khoa Kieu Stephen Tran Michael Tse.
Abdullah Alshalan Garrett Drown Team 3 CSE591: Virtualization and Cloud Computing.
What’s New in Fireware v11.9.5
Hands-On Microsoft Windows Server Introduction to Remote Access Routing and Remote Access Services (RRAS) –Enable routing and remote access through.
CHAPTER 2 PCs on the Internet Suraya Alias. The TCP/IP Suite of Protocols Internet applications – client/server applications ◦The client requested data.
Module 5: Configuring Access for Remote Clients and Networks.
BZUPAGES.COM. What is a VPN VPN is an acronym for Virtual Private Network. A VPN provides an encrypted and secure connection "tunnel" path from a user's.
Page 1 TCP/IP Networking and Remote Access Lecture 9 Hassan Shuja 11/23/2004.
The University of Oklahoma Virtual Private Network How it works.
Module 1: Configuring Routing by Using Routing and Remote Access.
1 Week #5 Routing and NAT Network Overview Configuring Routing Configuring Network Address Translation Troubleshooting Routing and Remote Access.
Virtual Private Networks Manraj Sekhon. What is a VPN?
1 The Network Menu. 2 Static Routing The Static Routing functionality within GD eSeries allows users to easily configure static routes to networks not.
Configure and Security Remote Acess. Chapter 8 Advance Computer Network Lecture Sorn Pisey
 Medium for communication between entities connected to it  “Entities” are referred to as hosts  Is the Internet a network?  In simplest terms, yes.
VIRTUAL PRIVATE NETWORKS Lab#9. 2 Virtual Private Networks (VPNs)  Institutions often want private networks for security.  Costly! Separate routers,
Windows Vista Configuration MCTS : Advanced Networking.
Virtual Private Network Wo Yan Lam. Overview What is Virtual Private Network Different types of VPN –Remote-Access VPN –Site-to-site VPN Security features.
Windows 10 Common VPN Error Tech Support Number
Virtual Private Network Access for Remote Networks
MTA Network Fundamental Cram Sesion
Virtual Private Networks
Planning and Troubleshooting Routing and Switching
Introduction to Networking
NETWORK TROUBLESHOOTING COMMANDS
Firewalls Routers, Switches, Hubs VPNs
VPN What, where, who, why when?.
Cengage Learning: Computer Networking from LANs to WANs
Presentation transcript:

DrayTek VPN Solution

Outline What is VPN What does VPN Do Supported VPN Protocol How Many Tunnels does Vigor Support VPN Application Special VPN Application CVM (Central VPN Management) Trouble Shooting

What is VPN A virtual private network (VPN) extends a private network across a public network, such as the Internet. It enables a computer to send and receive data across shared or public networks as if it were directly connected to the private network, while benefiting from the functionality, security and management policies of the private network.

What is VPN

What does VPN Do Host to LAN allow employees to securely access their company's intranet while traveling outside the office. Similarly, VPNs securely and cost-effectively connect geographically disparate offices of an organization, creating one cohesive virtual network. We call it as LAN to LAN.

Supported VPN Protocol PPTP (TCP 1723) L2TP (UDP 1701) IPsec (UDP 500) L2TP over IPsec SSL VPN (TCP 443) mOTP

How Many VPN Tunnel does Vigor Support Vigor Model IPsec/PPTP/L2TPSSL Vigor21102N/A Vigor21302N/A Vigor291216N/A Vigor292032N/A Vigor Vigor Vigor Vigor Vigor3200 Series6410 Vigor3300 Series200NA Vigor (PPTP/L2TP 200)20

How Many VPN Tunnel does Vigor Support Vigor ModelIPsec/PPTP/L2TPSSL Vigor27102N/A Vigor27602N/A Vigor Vigor Vigor

VPN Application LAN to LAN Host to LAN – PPTP/L2TP/IPsec/L2TP over IPsec – SSL VPN – mOTP VPN Trunk

LAN to LAN / /24

Host to LAN Client site OS could be – Windows (may use Smart VPN client) – Mac OS/iOS – Android – Ubuntu

SSL VPN SSL Tunnel – TCP port 443 SSL Application SSL Proxy vpn&Itemid=293&lang=en

SSL VPN

mOTP: Mobile One Time Password

VPN Trunk-Load Balance

VPN Trunk-Backup

Special VPN Application Change default route to this VPN tunnel Apply VPN Tunnel as Interface for L/B Policy VPN backup when specified WAN drops Packets trigger to establish the VPN tunnel Add more network into Phase 2 SA

Change Default Route to VPN tunnel Enable VPN default route Go via VPN tunnel for local service

Apply VPN Tunnel as Interface for L/B Policy How to Use Load-Balance/Route Policy

VPN Backup when Specified WAN Down

Add More Network into Phase2 SA

CVM

How to Use Central VPN Management

Trouble Shooting VPN is up but Traffic cannot pass to remote network?

What to Do? Check Routing Table Use ping to diagnose Use trace route to diagnose Check Firewall Rule

Check Routing Table Check Dial-Out Vigor's Routing table Check Dial-In Vigor's Routing table – If the route to remote VPN network doesn't exist, check TCP/IP Network Setting in VPN LAN to LAN profile. – If the route to remote VPN network exists, check if the host can respond ping.

PPTP Dial Out

PPTP Dial In

IPsec Dial Out

IPsec Dial In

Use Ping to Diagnose Ping to host from its Local Router – If Local Router cannot get ping response from the host, check the firewall setting on the host. Find a host that can respond ping from its Local Router, and then ping the host from Remote Router.

Ping Diagnostic

Check ARP Table

Use Trace Route to Diagnose Use command “tracert -d destination IP” to check if the packet is sending through the right gateway.

Check Firewall Rule Check Firewall Rule and see if the packet to remote VPN network is blocked by firewall rule.

Case Study

Router A has two networks connected, which are /24 and /24. Router B has one network connected, which is /24. Computer with IP can ping IP , but cannot ping IP What could we do?

Use Trace Route on Computer with IP to destination IP Result: The packet is routed to the Internet?! Step1:

Check Router B's Routing Table. Result: There is no Route to /24 on Router B. Next Step:

Add Route /24 via More option in VPN LAN to LAN Profile. Then disconnect and reconnect VPN. Result: Router B has route to network /24 now. Next Step:

Use Trace Route on Computer with IP to destination IP again. Result: The packet is stopped at IP Next Step:

Next Step Check Routing Table on Router A with IP Result: Route A has Static Route – to destination /24 via

Try to ping IP from Router A. Result: No ping response from IP Next Step:

Check Router A's ARP Table. Result: There is no ARP for IP It seems the host isn't connected to Router A! Next Step:

Check the Router setting that is connected between Router A and network /24. Result: The correct IP is ! Next Step:

Correct the Static Route setting from Router A then use Trace Route on Computer with IP to destination IP again. Result: It succeeds! Next Step:

Application Note When VPN tunnel is established, why can't I access any host in the remote subnet ? -

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.