Re: Types of VPNs

["Barry Irwin" <bvi () itouchlabs com>]

Morning,

you should be ble to fins answers to these with a quick hunt round google.
anywhay here are some answers.

1 Types of VPNs,
A VPN simply encapsulates pakets within other packets for transport over
public network.  Common technologies used are IPSEC, PPTP, L2TP, GRE, IPIP

2  Difference in both types of tunnels (AH/ESP),
These only apply to IPSEC VPNs.
AH stands for authenticated header.  using this, a packet is encapsulated
within another packet that contains a cryptographic checksum.  Packet
payload is NOT encrypted, but it can be detected whether the packet was
changed in transit.
ESP  - Encrypted Security Payload.  The packet is encrypted, and then
encapsulated, providing for both privacy and authentication of the packet
integrity

3 difference in implentation and their behavior in a production environment
for both types of VPNs
Welll this depends what you are wanting to achieve, adn what technology you
use.

4 sngle tunnel v split tunnel and can this be implemented in both type of
tunnels?
With regards to IPSEC, as far as  I amn aware the ability to do this would
depend on the software used to implement the tunnel.   The protocol itself
does not impose any restrictions on this.

Regards,

Barry



--
Barry Irwin         bvi () itouchlabs com                    Tel:
+27214875178
Systems Administrator: Networks And Security
iTouch Technology
iTouch TAS      http://www.itouchlabs.com         Mobile: +27824457210


----- Original Message -----
From: "Imran K" <ikhan () eudoramail com>
To: <security-basics () securityfocus com>
Sent: Thursday, May 01, 2003 6:59 PM
Subject: Types of VPNs


> Greetings,
>
> I am looking for conceptual pointers about VPNs.
>
> Things like,
>
> (1)Types of VPNs, (2) Difference in both types of tunnels (AH/ESP), (3)
difference in implentation and their behavior in a production environment
for both types of VPNs, (4) Single tunnel v split tunnel and can this be
implemented in both type of tunnels?
> If some out there could give me some pointers that will be very helpful
>
> Cheers,
>
> I
>
>
>
>
> Need a new email address that people can remember
> Check out the new EudoraMail at
> http://www.eudoramail.com
>
> --------------------------------------------------------------------------
-
> FastTrain has your solution for a great CISSP Boot Camp. The industry's
most
> recognized corporate security certification track, provides a
comprehensive
> prospectus based upon the core principle concepts of security. This ALL
INCLUSIVE curriculum utilizes lectures, case studies and true hands-on
utilization
> of pertinent security tools. For a limited time you can enter for a chance
> to win one of the latest technological innovations, the SEGWAY HT.
> Log onto http://www.securityfocus.com/FastTrain-security-basics
> --------------------------------------------------------------------------
--
>



---------------------------------------------------------------------------
FastTrain has your solution for a great CISSP Boot Camp. The industry's most 
recognized corporate security certification track, provides a comprehensive 
prospectus based upon the core principle concepts of security. This ALL INCLUSIVE curriculum utilizes lectures, case 
studies and true hands-on utilization 
of pertinent security tools. For a limited time you can enter for a chance 
to win one of the latest technological innovations, the SEGWAY HT. 
Log onto http://www.securityfocus.com/FastTrain-security-basics 
----------------------------------------------------------------------------