Virtual Private Networking (VPN) in Windows 2000 L…….ppt

Virtual Private Networking (VPN) in Windows 2000Lee GibsonSupport ProfessionalPremier SupportMicrosoft Corporation VPN Introduction Virtual private networking (VPN) in Microsoft? Windows? 2000 allows mobile users to connect over the Internet to a remote network. With virtual private networking, the user calls the local ISP and then uses the Internet to make the connection to the Network Access Server (NAS). Users only make a local call to the ISP instead of expensive long distance telephone calls to the remote access server. Connecting Intranet Computers In some corporate networks, the departmental data is so sensitive that the department LAN is physically disconnected from the corporate network. VPN allows the administrator to ensure that only the users on the corporate network with appropriate permissions can gain access to the protected resources of the department. Microsoft Layer 2 Tunneling Protocols PPTP – Point-to-Point Tunneling Protocol Uses a TCP connection for tunnel maintenance and generic routing encapsulated PPP frames for tunneled data. The payloads of the encapsulated PPP frames can be encrypted and/or compressed. L2TP – Layer 2 Tunneling Protocol Uses UDP and a series of L2TP messages for tunnel maintenance. VPN Requirements User authentication Address management Data encryption Key management Multi-protocol support User Authentication The solution must identify the user’s identity and only allow access to authorized users. The user account can be a local account on the VPN server or, in most cases, a domain account granted appropriate dial-in permissions. The default policy for remote access is “Allow access if dial-in permission is enabled.” Address Management VPN must assign the client an IP address on the private network. The VPN server can assign the clients IP address using DHCP or a static pool of IP addresses. Clients typically will have an IP address from the ISP and an IP on the private network after the VPN connection is establis