Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Chapter 12: VPN Connectivity in Remote Access Designs Designs That Include VPN Remote Access Essential VPN Remote Access Design Concepts Data Protection.

Published byEmily Wilson Modified over 8 years ago

Similar presentations

Presentation on theme: "1 Chapter 12: VPN Connectivity in Remote Access Designs Designs That Include VPN Remote Access Essential VPN Remote Access Design Concepts Data Protection."— Presentation transcript:

1 1 Chapter 12: VPN Connectivity in Remote Access Designs Designs That Include VPN Remote Access Essential VPN Remote Access Design Concepts Data Protection in VPN Remote Access Designs VPN Remote Access Design Optimization

2 2 VPN Remote Access Solutions

3 3 Routing and Remote Access and VPN Virtual private network (VPN) gives control over Authorized user accounts Security methods Resources to be accessed Uses Point-to-Point Tunneling Protocol (PPTP) and Layer 2 Tunneling Protocol (L2TP) VPN and Remote Authentication Dial-In User Service (RADIUS) solutions differ in many ways.

4 4 Routing and Remote Access and Windows 2000 Routing and Remote Access in Microsoft Windows 2000 includes Remote access client Remote access server

5 5 VPN Clients and Servers

6 6 VPN Remote Access Design Review Amount of data transmitted Number of locations Existing Internet connections Plans for network growth Number of simultaneous clients Operating systems used by clients Protocols used by clients

7 7 VPN Remote Access Design Decisions Integration into existing network Hardware requirements for servers Protection for confidential data Availability to remote access users Optimization of network traffic

8 8 VPN Remote Access Designs A third party provides connectivity. Cost reduction is an advantage. Some dial-up security is not available. Caller ID detection Remote user callback Authentication protocol for dial-up connection Password security features

9 9 VPN Remote Access Scenario

10 10 Number of VPN Remote Access Servers Determine the maximum number of users. Determine the sustained data rate. Perform a pilot test. Calculate the number of servers.

11 11 Placing VPN Remote Access Servers Placement goals: Centralize administration Reduce costs Reduce network traffic Single location Multiple locations Adjacent to resources

12 12 Single Location Configuration Provide enough PPTP or L2TP virtual ports. Advantages Centralized administration Lower administration costs Disadvantages Increased network traffic on segments No redundancy

13 13 Multiple Location Configuration Provide enough PPTP or L2TP virtual ports. Advantages Reduced network traffic between locations Redundancy Disadvantages Decentralized administration and support Increased administration costs

14 14 Placing VPN Servers Near Resources Reduces the segments traversed Improves performance for remote access clients

15 15 Remote Access Client Support Virtual ports PPTP L2TP Transport protocols determined by client needs Network address assignment methods Allocate manually Allocate automatically using Dynamic Host Configuration Protocol (DHCP)

16 16 Preventing Unauthorized Access Restrict remote access to resources on the server. Use filters to restrict traffic on servers. Place VPN servers for security Outside the private network On screened subnets Within the private network

17 17 Placing VPN Servers Outside the Private Network

18 18 Placing VPN Servers on Screened Subnets

19 19 Placing VPN Servers Inside the Private Network

20 20 Protecting Remote Access Data Authenticate remote users. Local accounts Active Directory directory service accounts Encrypt confidential data. Microsoft Point-to-Point Encryption (MPPE) Internet Protocol Security (IPSec) Enforce remote access policies.

21 21 Enhancing Remote Access Availability Use redundant VPN remote access servers. Network Load Balancing Round robin DNS Use multiple Internet connections. Dedicate a computer to running Routing and Remote Access.

22 22 Improving Remote Access Performance Upgrade hardware. Distribute clients across multiple servers. Use Network Load Balancing. Use round robin DNS. Dedicate a computer to running Routing and Remote Access.

23 23 Chapter Summary There are many advantages in using VPN for remote access. Consider the number of users and the data rate. Use multiple remote access servers. Evaluate the needs of remote clients. Protect private network resources. Improve the availability and performance of the design.

Download ppt "1 Chapter 12: VPN Connectivity in Remote Access Designs Designs That Include VPN Remote Access Essential VPN Remote Access Design Concepts Data Protection."

Similar presentations

1 Chapter 2: Networking Protocol Design Designs That Include TCP/IP Essential TCP/IP Design Concepts TCP/IP Data Protection TCP/IP Optimization.

1 Chapter 2: Networking Protocol Design Designs That Include TCP/IP Essential TCP/IP Design Concepts TCP/IP Data Protection TCP/IP Optimization.
Setting Up a Virtual Private Network Chapter 9. Learning Objectives Understand the components and essential operations of virtual private networks (VPNs)

Setting Up a Virtual Private Network Chapter 9. Learning Objectives Understand the components and essential operations of virtual private networks (VPNs)
1.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 1: Introducing Windows Server.

1.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 1: Introducing Windows Server.
Module 5: Configuring Access for Remote Clients and Networks.

Module 5: Configuring Access for Remote Clients and Networks.
Module 1: Microsoft Windows 2000 Networking Services Infrastructure Overview.

Module 1: Microsoft Windows 2000 Networking Services Infrastructure Overview.
1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.

1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.
1 Configuring Virtual Private Networks for Remote Clients and Networks.

1 Configuring Virtual Private Networks for Remote Clients and Networks.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 11: Planning Network Access.

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 11: Planning Network Access.
Module 10: Configuring Virtual Private Network Access for Remote Clients and Networks.

Module 10: Configuring Virtual Private Network Access for Remote Clients and Networks.
Hands-On Microsoft Windows Server 2003 Administration Chapter 11 Administering Remote Access Services.

Hands-On Microsoft Windows Server 2003 Administration Chapter 11 Administering Remote Access Services.
Access Controls Supervised by: Dr.Lo’ai Tawalbeh Prepared by: Abeer Saif.

Access Controls Supervised by: Dr.Lo’ai Tawalbeh Prepared by: Abeer Saif.
Goal of The Paper  What exactly is a VPN?  Why do you need a VPN?  what are some of the technologies used in deploying a VPN?  How does a VPN work?

Goal of The Paper  What exactly is a VPN?  Why do you need a VPN?  what are some of the technologies used in deploying a VPN?  How does a VPN work?
Lesson 20 – OTHER WINDOWS 2000 SERVER SERVICES. DHCP server DNS RAS and RRAS Internet Information Server Cluster services Windows terminal services OVERVIEW.

Lesson 20 – OTHER WINDOWS 2000 SERVER SERVICES. DHCP server DNS RAS and RRAS Internet Information Server Cluster services Windows terminal services OVERVIEW.
70-270, 70-290 MCSE/MCSA Guide to Installing and Managing Microsoft Windows XP Professional and Windows Server 2003 Chapter Twelve Implementing Terminal.

70-270, MCSE/MCSA Guide to Installing and Managing Microsoft Windows XP Professional and Windows Server 2003 Chapter Twelve Implementing Terminal.
Internet Protocol Security (IPSec)

Internet Protocol Security (IPSec)
Remote Networking Architectures

Remote Networking Architectures
Virtual Private Network (VPN) © N. Ganesan, Ph.D..

Virtual Private Network (VPN) © N. Ganesan, Ph.D..
Module 6: NAT As a Solution for Internet Connectivity.

Module 6: NAT As a Solution for Internet Connectivity.
Copyright Microsoft Corp. 2006 Ramnish Singh IT Advisor Microsoft Corporation Secure Remote Access Challenges, Choices, Best Practices.

Copyright Microsoft Corp Ramnish Singh IT Advisor Microsoft Corporation Secure Remote Access Challenges, Choices, Best Practices.
Chapter 11: Dial-Up Connectivity in Remote Access Designs

Chapter 11: Dial-Up Connectivity in Remote Access Designs

Similar presentations

Ads by Google