Broadband VPN Router products in general is the first product, with a 10Mbps or 10/100Mbps WAN port and a number of 10/100Mbps LAN port, enabling simultaneous Internet access to LAN users. In addition, different types of VPN Broadband Router will also have some combination of all state data such as packet inspection-based firewall (SPI Firewall), anti-hacking, Internet access content keyword filtering, logging, anti-virus, virtual services or virtual host (DMZ machine), supports dynamic IP addresses to connect the dynamic Domain Name Service (DDNS), Wireless WLAN access, and many other features.
Users select the broadband VPN products, should pay attention to the product:
● best to pass VPNC tested and certified manufacturers of other devices through the IPSec compatible;
● support for DES, 3DES or AES (up to 256 bit) encryption, digital certificates (PKI X.509), automatic or manual IKE, security is top priority;
● SHA-1 and MD5 authentication;
● it easy to configure and maintain management and support dynamic domain name (DDNS), a comprehensive conservation equipment, lines, operation and management costs;
● support both mesh-type (mesh) and concentrated star (hub and spoke) of the VPN network, the common VPN network design mainly uses the typical hub-and-VPN topology that allows deployed by VPN needs, configuration or integration with one two kinds of network topology or full mesh topology provides the main link between sites of high-performance redundant.
General VPN solution based on the application environment, divided into three categories:
● Access VPN: also known as VPDN, primarily for travel outside the company, mobile office and home office personnel to establish communications with the company, have to use this VPN connection, to provide them with safe, fast VPN tunnel connection.
● Intranet VPN: primarily to house the branch office and communication between central office. Apply to headquarters and branch offices or branch offices over the connection between, we should use this VPN connection, able to ensure the company's headquarters and branch or between branches of the security of data transmission.
● Extranet VPN: Main to provide to key customers and partners and establish communications between the companies. VPN connection with this company and partners to ensure security of data transfer.
Typical VPN Network Construction
A customized VPN solutions also have the following characteristics: flexibility (according to the normal security policy or on-demand access to the Internet to transmit encrypted tunnel), security and reliability (gateway firewall protection of critical data to ensure that important information is not tapping), a comprehensive cost-saving (line, equipment, operation, maintenance and management costs), strong safety (do not need the support of other common platform to ensure high security) and compatibility (to protect the original investment, flower Good per cent).
Technical development of broadband VPN
For broadband applications,. VPN products will now move the following directions:
1. Multifunctional integrated, more closely integrated firewall and Internet filtering technologies. Applicable to small and medium networks VPN products on the device will be more integrated print server, wireless LAN access points, multi-port, or a variety of broadband access and more flexible broadband access and authentication methods.
2. To support more QoS quality of service. Such as more effective support IP voice, video conferencing, multimedia streaming applications and so on.
3. Enhanced hardware encryption and security features, providing a powerful attack defenses.
4. Has a certain flexibility in the software and hardware interface module can be realized with the cooperation of the local ISP services, the establishment of the proliferation of VPN service network (VAN).