toolbox >
tech library | |
| Virtual
Private Networks |
1. What
is it
 A
VPN is a tunnel created across a public infrastructure (like the
Internet) and can transmit data from one network to another,
providing a Wide Area Network link. To develop a WAN without VPN
technology requires leased lines or similar technology from a
telephone company or networking provider, and usually at a very high
cost (at least thousands in dedicated hardware and subscription
costs).
VPN technology enables interconnections between any two points on
the Internet, such that the two don’t need to have the same Internet
Service Provider or use the same connection technology (DSL, Cable,
Dial-up). This can enable high speed interlinks between branch
offices using low cost broadband consumer technology
2. What can it do for me
A VPN running in the background can interconnect computers so that
they will appear to be local, even though they could be across town,
or even in a different country. You can share files & printers,
host applications and database systems – anything that can be done
locally can be distributed to branch offices
3. What is the cost?
The home office will require a basic business DSL or cable modem
provider, and must have a static IP. The cost is usually under $100
for the signup fee, and usually about $50 monthly for service, above
the cost of the line (basic telephone or cable TV subscription is
usually required). All the branch offices or remote home offices
can connect using consumer level connections, nothing special is
required.
A VPN tunneling device or VPN enabled router is required at each
location. These devices start at $150, which would provide
reasonable speed and quality. More expensive devices allow for
greater speed and additional security measures, these devices are
generally about $500.
4. How fast can this be deployed
The usual turnaround time for business broadband connections is less
than a month. Once the broadband is installed, the central VPN
server can be deployed and tested within a few days. Remote sites
can be installed in just a matter of hours
5. Is it safe? And secure
Several technologies have been developed to ensure safe and secure
VPN communications. They include encryption technologies like DES
(56 bit encryption) to 3DES (168 bit encryption), which ensure that
intercepted communications are indecipherable, IKE which provide a
secure method of establishing and confirming identities.
6.
What is the underlying technology
The underlying technology is IPSEC, which is the gold standard for
VPN links. IPSEC secures the data at the lowest level, and is the
enterprise standard for Cisco, Symantec, Checkpoint and Nokia. As a
result, there are a wide assortment of interconnecting devices from
multiple vendors, that exist as all-in-one devices, web-appliances,
and servers and software devices
7. What about hackers
Adding a VPN to an existing broadband connection will not increase
its vulnerabilities, nor will it negate them. Only a firewall can
secure a network from intruders, and this is an issue that is
inherent with any device that connects to the Internet. Firewalls
should be added to the home office and are recommended for any
broadband enabled location. These devices are generally
inexpensive, starting from $100. Of course, more expensive devices
are faster and provide more security features.
Kurt Winter, Networking Engineer
kwinter@sandaleo.com |
