Location via proxy:   [ UP ]  
[Report a bug]   [Manage cookies]                

Naveen Patel

Download as ppt, pdf, or txt
Download as ppt, pdf, or txt
You are on page 1of 12

Naveen Patel

Virtual Private Network


VPN is a service that offers secure & reliable communication over a shared public network. VPN carries private traffic over a public network using advanced encryption and tunnel methods to provide
Confidentiality of information Integrity of data of user Naveen Authentication Patel

Cont.
Data packet is encrypted & encapsulated with a new header to provide security.

Naveen Patel

VPN can be configured in many ways


Point to point

Point to Multipoint

Client initiated (Remote Access)

Naveen Patel

Tunneling Protocols
L2TP L2F PPTP IPSec

GRE

Naveen Patel

Cont
GRE: Generic Routing Encapsulation
GRE does not provide encryption. It supports both IP or Non-IP Unicast and Multicast It encapsulates IP, CLNP, IPX protocols inside IP Packet.

L2TP: Layer 2 Tunneling Protocol.


It does not provide Encryption. It is a combination of Cisco L2F(Layer 2 Forwarding) and Microsoft PPTP It can forward IP and Non IP unicast, multicast and Broadcast traffic

Naveen Patel

Cont
IPSec: Internet Protocol Security.
It is an open Standard Protocol It supports Unicast IP It Provides Data Security by Encryption It provides data integrity It provides Tunneling

Naveen Patel

GRE Site-to-Site VPN

11.0.0.1 S0

12.0.0.1 S1 E0 192.168.3.1/24

E0 192.168.1.1/24

LAN: 192.168.1.0/24

LAN: 192.168.3.0/24

Naveen Patel

C:\> telnet 192.168.1.1 Connecting WELCOME TO HYDERBAD ROUTER User Access Verification Password: **** Configuring Tunnel Hyderabad> Enable Router(config)# interface tunnel <no> Password: **** Hyderabad# Configure TerminalIp address <ip address> <mask> Router(config-if)# Enter configuration commands, one per line. End with CNTL/Z. Router(config-if)# Tunnel Source <ip address> HYDERABAD(config)# Interface Serial 0 HYDERABAD(config-if)# Router(config-if)# Ip address Tunnel 11.0.0.1 Destination 255.0.0.0 <ip address> HYDERABAD(config-if)# No shut HYDERABAD(config-if)# Encapsulation ppp HYDERABAD(config-if)# exit HYDERABAD(config)# Interface tunnel 10 HYDERABAD(config-if)# Ip address 192.168.0.1 255.255.255.0 HYDERABAD(config-if)# Tunnel source 11.0.0.1 HYDERABAD(config-if)# Tunnel Destination 12.0.0.1 HYDERABAD(config-if)# Exit HYDERABAD(config)#

HydConfig

Naveen Patel

C:\> telnet 192.168.3.1 Connecting WELCOME TO Chennai ROUTER User Access Verification

CheConfig

Password: **** Configuring Tunnel Chennai> Enable Router(config)# interface tunnel <no> Password: **** Chennai# Configure Terminal Ip address <ip address> <mask> Router(config-if)# Enter configuration commands, one per line. End with CNTL/Z. Router(config-if)# Tunnel Source <ip address> Chennai(config)# Interface Serial 1 Chennai(config-if)# Router(config-if)# Ip address Tunnel 12.0.0.1 Destination 255.0.0.0 <ip address> Chennai(config-if)# No shut Chennai(config-if)# Encapsulation ppp Chennai(config-if)# exit Chennai(config)# Interface tunnel 10 Chennai(config-if)# Ip address 192.168.0.2 255.255.255.0 Chennai(config-if)# Tunnel source 12.0.0.1 Chennai(config-if)# Tunnel Destination 11.0.0.1 Chennai(config-if)# Exit Chennai(config)#

Naveen Patel

C:\>ping 192.168.3.10

Hydping
bytes=32 bytes=32 bytes=32 bytes=32 time=48ms time=48ms time=48ms time=48ms TTL=126 TTL=126 TTL=126 TTL=126

Pinging 192.168.3.10 with 32 bytes of data: Reply Reply Reply Reply from from from from 192.168.3.10: 192.168.3.10: 192.168.3.10: 192.168.3.10:

Ping statistics for 192.168.3.10: Packets: Sent = 4, Received = 4, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 48ms, Maximum = 48ms, Average = 48ms C:\>

Naveen Patel

C:\> tracert 192.168.3.10

hydtrace
1 ms 71 ms 64 ms Hyd [192.168.1.1] 192.168.0.2 192.168.3.10

Tracing route to 192.168.3.10 over a maximum of 30 hops 1 2 3 1 ms 55 ms 64 ms 1 ms 55 ms 64 ms

Trace complete. C:\>

Naveen Patel

You might also like