home
NEWS       BLOGS       FORUMS       NEWSLETTERS       RESEARCH       EVENTS       DIGITAL LIBRARY       CAREERS  
Network Computing Network Computing Powered by InformationWeek Business Technology Network

IMMERSE YOURSELF:

SOA

  |

Data Center

  |

802.11n

  |

Data Privacy

  |
APO  |

Virtualization

  |

NAC

  |

Security

  |

Network Mgmt

  |

Enterprise Apps

  |

Storage & Servers












Inter net-Based Multiprotocol Remote Access

By Mike Fratto   Network managers are under the gun to provide more connectivity options for mobile and remote users. Deciding on issues such as the size of the modem pool, the geographic locations of points of presence (POPs) and the kinds of access users will require is a monumental task.

Modem-based private dial-up links are often implemented to provide remote access to centralized network data and e-mail. Or, if your company has caught the Internet wave, you may have set up a corporate presence on the Internet, offering a host of services to the public as well as to private employees. Users connecting to the Internet through Internet service providers (ISPs) can access corporate IP services from anywhere in the world.

Although this type of access lets remote users work from virtually anywhere, it does not guarantee access to network services that require IPX/SPX, NetBEUI or other network protocols. Until recently, you needed a remote-access solution based on the Point-to-Point Protocol (PPP) to gain multiprotocol remote access.

Implementing and managing large modem pools and remote-access servers is costly not only in dollars, but also in time and other resources. To circumvent these costs, you could outsource your remote-access services. Outsourced remote access, coupled with virtual dial-up private networking (VDPN), lets users call any ISP, make a PPP connection, then create a private connection to your network over the Internet.

In this workshop, we'll discuss the effectiveness of VDPN-remote-access coupling, and what it means for remote access.

Your Own Private Tunnel VDPN lets users establish a remote-node connection to a network over a WAN, such as the Internet. In doing so, the technology extends the PPP session created between the clie nt and the remote-access server to a home gateway on the network. The home gateway terminates the PPP session and perfor ms all of the functions of a remote-access server, including user authentication and protocol negotiation.

The two technologies most often used are the Point-to-Point Tunneling Protocol (PPTP) and Layer 2 Forwarding (L2F). PPTP is an Internet Engineering Task Force (IETF) draft authored by several companies, including Ascend Communications Corp., ECI/Telematics, Microsoft Corp., 3Com Corp. and U.S. Robotics. Cisco Systems' L2F is also an IETF draft. The protocols provide the same basic services, but they approach these services from different angles.

One word of caution if you're using a public WAN--such as the Internet--to transport your VDPN tunnels: You will have to establish security measures at the PPP or IP levels. Unfortunately, neither tunneling protocol specifies any encryption technologies.

VDPNs use two servers to create multiprotocol tunnels via a WAN (see "The Virtual VDPN Connection" next page). A user dials an ISP (or corporate modem pool) and establishes a PPP session between the network access service (NAS), which answers the incoming call and forms one end of the VDPN tunnel, and the client. The NAS tells the home gateway (the other end of the VDPN tunnel) that a VDPN session has been requested. The NAS then forwards the client's user name and password. If the user is valid, the NAS and the home gateway establish the tunnel and assign a session ID that specifically identifies the user and his or her tunnel.

Once the user has been authenticated and the tunnel established, the client and the home gateway negotiate the PPP session, setting up protocols and allocating network addresses to the client. In this model, the tunneling process is transparent to the user.

VDPN connections made from Windows NT Workstation are more flexible because tunnels are created directly from the workstation ("Client Established VDPN With NT").

We established a VDPN tunnel connecti on in our Syracuse lab by initiating a PPP dial-up session to Shiva Corp.'s LANRover, and then made a second remote-access serv ice (RAS) call to create the PPTP tunnel. The RAS dialer uses the home gateway's IP address in place of the phone number. The VDPN is established with the client as one end of the tunnel.


Updated April 8, 1997








Ready to take that job and shove it?

Function:

Keyword(s):

State:
SPONSOR
RECENT JOB POSTINGS
CAREER NEWS
Go beyond Google and get vertical. These specialized search sites will help you find the business information you need -- fast.

Ari Balogh was named to the post of chief technology officer as the companys for a "realignment" of employees.










InformationWeek U.S. IT Salary Survey 2008
Salaries for business technology professionals are falling. Here's what you need to know in order to make good hiring decisions and personal career choices. Download Today
 
ROLLING RIGHT ALONG
Follow key Network Computing Reviews from conception to completion. This Week: Holistic APM.



Network Computing Reports Emerging Enterprise Podcast Series: Secrets to Success








TechSearch


Microsite of the Week


Powerful Information at Your Fingertips



InformationWeek Business Technology Network
InformationWeekInformationWeek 500InformationWeek 500 ConferenceInformationWeek AnalyticsInformationWeek CIO
InformationWeek EventsInformationWeek ReportsInformationWeek MagazinebMightyByte and SwitchDark Reading
Digital LibraryIntelligent EnterpriseInternet EvolutionNetwork ComputingNo Jitter
space
Techweb Events Network
InteropVoiceConWeb 2.0 ExpoWeb 2.0 SummitEnterprise 2.0 ConferenceMobile Business ExpoSoftware ConferenceCSI - Computer Security Institute
Black HatGTECEnergy CampMashup CampStartup Camp
space
Light Reading Communications Network
Light ReadingLight Reading EuropeUnstrungLight Reading's Cable Digital NewsConstantinopleInternet Evolution
Heavy ReadingLight Reading Live!Light Reading InsiderEthernet ExpoOptical ExpoTeleco TVTower Technology Summit
space
Financial Technology Network
Advanced TradingBank Systems & TechnologyInsurance & TechnologyWall Street & TechnologyAccelerating Wall StreetBank Systems & Technology Executive SummitBuyside Trading SummitInsurance & Technology Executive Summit
space
Microsoft Technology Network
MSDN MagazineTechNetThe Architecture Journal
space
App Infrastructure   |   Messaging & Collaboration   |   Network & Systems Mgmt   |   Network Infrastructure   |   Security  |   Storage & Servers   |   Wireless   |   Enterprise Apps
About Us  |  Contact Us  |  Site Map  |  Technology Marketing Solutions  |  Advertising Contacts  |   Briefing Centers
Copyright © 2008  United Business Media LLC  |  Privacy Statement  |  Terms of Service  |  Your California Privacy Rights