Virtual Private Network
RM GUI HiSecOS EAGLE20/30
Release
3.0
09/2015
203
5 Virtual Private Network
Virtual Private Networks (VPN) provide secure communications for remote
users or branch offices, allowing them to connect to servers within other
branch offices, or even other companies using public networks. Even though
the VPN tunnel uses a public network, it has the same behavior as a private
network.
VPN tunnels provide secure communications to support the current trend of
increased telecommuting and global business operations. In such cases,
remote users or branch offices are able to connect to each other and central
resources.
To provide secure communications, VPNs use IP Security (IPSec). IPSec
has 2 functions for providing confidentiality namely, data encryption and data
integrity. To provide authentication and integrity of the source with
encryption, the device uses the IPSec Encapsulating Security Payload
(ESP), where only the sender and receiver know the security key.
The device also uses the Negotiated Security Association method, in which
the first packet received initiates a negotiation, between the sender and
receiver, for which security association (SA) parameters the devices are
going to use. The devices use the Internet Key Exchange (IKE) for the
negotiation process. When negotiating the parameters, the sending and
receiving devices agree on the authentication and data-security methods.
The devices also perform mutual authentication, and then generate a shared
key. The devices use the shared key to encrypt the data contained in each
packet.
The VPN LED is green if at least one VPN tunnel is active and established.
The LED is a separate LED for VPN and as such is non-configurable for this
device. The VPN LED only displays the status of the VPN tunnels.
The menu contains the following dialogs:
VPN Overview
Virtual Private Network Certificates
Connections
To Next Page
Loading...