VPN: An Easy Software / Appliance Solution for Remote Access Robert Gulick, EdD DBA/Technology Trainer Parma City School District
This is not about… Heavy-duty tech topics –layer 2 frames over MPLS –BGP ("layer 3 VPNs") –PKI in IPsec –IKEv2 Mobility –Point-to-Point Tunneling Protocol (PPTP) –Online file storage services ( or
This is about how to… Access files on your school / office computer Remotely run software on your school computer Remotely maintain your school computer / server
Topics What is VPN What is Remote Access Software Solutions Subscription Solutions Hardware Solutions Questions to Consider Our Results
What is VPN? Virtual Private Network Technology that enables two computers to communicate privately using a public network Encrypted messages sent between computers via the Internet
What is Remote Access? Accessing network resources (data) from outside the network –May or may not be via a VPN (could use RAS / modem) While at a conference you can access a file on your building server.
Vocabulary Host –The target computer; the computer you wish to access or control Client –The computer you are using to access the host Thin v. Rich Client
Software – Free Remote Desktop Connection –WindowsXP Pro to WindowsXP Pro / Windows Server –Need to configure the host computer to accept connections (security) –Many options Sound, speed, remote printing
Software – Free Remote Desktop Connection –Pros Good speed Easy to setup –Cons External access requires external IP Address (each computer) Only 1 client per host at a time
Software – Free TightVNC (OpenSource) – –Works on multiple platforms and between multiple platforms –Install VNC Server on host and VNC Viewer on client –Handles file transfers
Software – Free TightVNC (OpenSource) –Pros Very good speed Great for older or non Microsoft systems –Cons External access requires external IP Address Support is limited –user groups and pay support versions available
Software – Free Demonstration Time
Software - $ Typically –Need 1 license on each host and 1 license on each client –User / password settings are maintained on each host –Have more support options
Software - $ PCAnywhere – LapLink Gold – Anyplace Control – Timbuktu –
Software - $ Pros –More security option –Additional features Cons –Can be expensive for wide installation –Require rich client to use –External access requires external IP Address
Software – Subscription Typically –Pay by host + user combination –Install an agent on each host machine –Thin client (Web access java applet) –Maintain user / passwords at service Web site
Software – Subscription GoToMyPC – LogMeIn – PCNow (WebEx) –
Software – Subscription Pros –External access WITHOUT external IP Address –Many security options –Integrated updates Cons –Can get expensive Monthly / yearly rates –Constantly generates outbound network traffic Heartbeat
Hardware – VPN Typically –1U Linux server –Needs 1 external IP address for up to 25+ concurrent users –SSL provided through vendor under service agreement (including DNS) –Web Interface for everything –Clientless access (java) –LDAP/Active Directory enabled
Hardware
Hardware Pros –Simple to install –Thin VPN client means no user installs Cons –Not every solution works on all hardware / software –Another server to maintain
Our Results VPN Appliance (Hardware) by Enkoo –recently purchased by SonicWall –14 named users Remote Desktop to 22 desktops and 29 servers ‘Beam’ host to 23 server 2 Intranet Web sites 3 File shares
Hardware Demonstration
Questions to Consider What OS? (host / client) Is external access needed? –Can you get one or more external IP Addresses? How many computers? How many users? How much use? What levels of security / support do you need?
Web Resources Search Terms –VPN –VNC –Remote Desktop Control –SSL VPN Appliance
Web Resources How Stuff Works – VPN Site for comparing VPN appliances Great article on selecting / testing Introduction to OpenVPN
Web Resources PCWorld – Review of Remote Desktop Services – PCWord – Review of Remote File Access Services –
The End Copy of presentation at: