1 l2tp overview 18-may-05. 2 agenda vpn tunneling pptp l2f lt2p
TRANSCRIPT
![Page 1: 1 L2TP OVERVIEW 18-May-05. 2 Agenda VPN Tunneling PPTP L2F LT2P](https://reader035.vdocument.in/reader035/viewer/2022062716/56649dd25503460f94ac8d8d/html5/thumbnails/1.jpg)
1
L2TP OVERVIEW
18-May-05
![Page 2: 1 L2TP OVERVIEW 18-May-05. 2 Agenda VPN Tunneling PPTP L2F LT2P](https://reader035.vdocument.in/reader035/viewer/2022062716/56649dd25503460f94ac8d8d/html5/thumbnails/2.jpg)
2
Agenda
VPN Tunneling PPTP L2F LT2P
![Page 3: 1 L2TP OVERVIEW 18-May-05. 2 Agenda VPN Tunneling PPTP L2F LT2P](https://reader035.vdocument.in/reader035/viewer/2022062716/56649dd25503460f94ac8d8d/html5/thumbnails/3.jpg)
3
VPN
Virtual Private Network is a private network that uses a public network (usually the Internet) to connect remote sites or users together. Instead of using a dedicated connection such as leased line, a VPN uses “virtual” connections routed though the internet.
![Page 4: 1 L2TP OVERVIEW 18-May-05. 2 Agenda VPN Tunneling PPTP L2F LT2P](https://reader035.vdocument.in/reader035/viewer/2022062716/56649dd25503460f94ac8d8d/html5/thumbnails/4.jpg)
4
Tunneling
Tunneling is the transmission of data intended for use only within a private, usually corporate network through a public network in such a way that the routing nodes in the public network are unaware that the transmission is part of a private network.
![Page 5: 1 L2TP OVERVIEW 18-May-05. 2 Agenda VPN Tunneling PPTP L2F LT2P](https://reader035.vdocument.in/reader035/viewer/2022062716/56649dd25503460f94ac8d8d/html5/thumbnails/5.jpg)
5
Tunneling illustrated
Router A
Workstation X
Router BWorkstation
Y
Original IPpacket dest Y
Step 1.Original, unroutable
IP Packet sent to router
Step 2Original IP
packetencapsulatedin another IP
packetOriginal IP
packetNew IPPacket
Tunnel
Step 3Original packetextracted, sentto destination
Original IPpacket dest Y
Tunnel
![Page 6: 1 L2TP OVERVIEW 18-May-05. 2 Agenda VPN Tunneling PPTP L2F LT2P](https://reader035.vdocument.in/reader035/viewer/2022062716/56649dd25503460f94ac8d8d/html5/thumbnails/6.jpg)
6
Types of Tunneling
Two basic types of tunnels Voluntary tunnels
Tunneling initiated by the end-user
(Requires client software on remote computer)
Compulsory tunnels Tunnel is created by NAS or router
(Tunneling support required on NAS or Router)
![Page 7: 1 L2TP OVERVIEW 18-May-05. 2 Agenda VPN Tunneling PPTP L2F LT2P](https://reader035.vdocument.in/reader035/viewer/2022062716/56649dd25503460f94ac8d8d/html5/thumbnails/7.jpg)
7
Voluntary Tunnels
Dial IP Access
PPP access protocol
Dial Access Provider VPN Service
Dial AccessServer
PPTP AccessServerClient Host Serial Interface
PPTP Virtual Interface
![Page 8: 1 L2TP OVERVIEW 18-May-05. 2 Agenda VPN Tunneling PPTP L2F LT2P](https://reader035.vdocument.in/reader035/viewer/2022062716/56649dd25503460f94ac8d8d/html5/thumbnails/8.jpg)
8
Voluntary Tunnels (Cont.) Will work with any network device
Tunneling transparent to leaf and intermediate devices
But user must have a tunneling client compatible with tunnel server
PPTP, L2TP, L2F, IPSEC, IP-IP, etc. Simultaneous access to Intranet (via tunnel)
and Internet possible Employees can use personal accounts for corporate
access Remote office applications
Dial-up VPN’s for low traffic volumes
![Page 9: 1 L2TP OVERVIEW 18-May-05. 2 Agenda VPN Tunneling PPTP L2F LT2P](https://reader035.vdocument.in/reader035/viewer/2022062716/56649dd25503460f94ac8d8d/html5/thumbnails/9.jpg)
9
Compulsory Tunnels
L2TPV.x modem protocol
PPP access protocol
Dial Access Provider Internet or VPN Service
Non-routedforwarding path
Dial AccessServer
L2TP AccessServerClient Host
![Page 10: 1 L2TP OVERVIEW 18-May-05. 2 Agenda VPN Tunneling PPTP L2F LT2P](https://reader035.vdocument.in/reader035/viewer/2022062716/56649dd25503460f94ac8d8d/html5/thumbnails/10.jpg)
10
Compulsory Tunnels (Cont.) Will work with any client But NAS must support same tunnel method
But… Tunneling transparent to intermediate routers Network access controlled by tunnel server
User traffic can only travel through tunnel Internet access possible
Must be by pre-defined facilities Greater control Can be monitored
![Page 11: 1 L2TP OVERVIEW 18-May-05. 2 Agenda VPN Tunneling PPTP L2F LT2P](https://reader035.vdocument.in/reader035/viewer/2022062716/56649dd25503460f94ac8d8d/html5/thumbnails/11.jpg)
11
Compulsory Tunnels (Cont.) Static Tunnels
All calls from a given NAS/Router tunneled to a given server
Realm-based tunnels Each tunnel based on information in NAI
(I.e. user@realm) User-based tunnels
Calls tunneled based on userID data stored in authentication system
![Page 12: 1 L2TP OVERVIEW 18-May-05. 2 Agenda VPN Tunneling PPTP L2F LT2P](https://reader035.vdocument.in/reader035/viewer/2022062716/56649dd25503460f94ac8d8d/html5/thumbnails/12.jpg)
12
PPTP
Point-to-point tunneling protocol
![Page 13: 1 L2TP OVERVIEW 18-May-05. 2 Agenda VPN Tunneling PPTP L2F LT2P](https://reader035.vdocument.in/reader035/viewer/2022062716/56649dd25503460f94ac8d8d/html5/thumbnails/13.jpg)
13
PPTP (Cont.)
PPP access by remote computers to a private network through the Internet
1. Remote user dials in to the local ISP network access server using PPP.
![Page 14: 1 L2TP OVERVIEW 18-May-05. 2 Agenda VPN Tunneling PPTP L2F LT2P](https://reader035.vdocument.in/reader035/viewer/2022062716/56649dd25503460f94ac8d8d/html5/thumbnails/14.jpg)
14
PPTP (Cont.)
2. The PAC establishes a control channel (TCP) across the PPP connection and through the internet to the PNS attached to the home network.
![Page 15: 1 L2TP OVERVIEW 18-May-05. 2 Agenda VPN Tunneling PPTP L2F LT2P](https://reader035.vdocument.in/reader035/viewer/2022062716/56649dd25503460f94ac8d8d/html5/thumbnails/15.jpg)
15
PPTP (Cont.)
3. Parameters for the PPTP channel are negotiated over the control channel, and the PPTP tunnel is established.
![Page 16: 1 L2TP OVERVIEW 18-May-05. 2 Agenda VPN Tunneling PPTP L2F LT2P](https://reader035.vdocument.in/reader035/viewer/2022062716/56649dd25503460f94ac8d8d/html5/thumbnails/16.jpg)
16
PPTP (Cont.)
4. A second PPP connection is made from the remote user, through the PPTP tunnel between the PAC and the PNS, and into the private networks NAS.
![Page 17: 1 L2TP OVERVIEW 18-May-05. 2 Agenda VPN Tunneling PPTP L2F LT2P](https://reader035.vdocument.in/reader035/viewer/2022062716/56649dd25503460f94ac8d8d/html5/thumbnails/17.jpg)
17
PPTP (Cont.)
5. IP datagrams or any other protocol’s datagrams are sent inside the PPP frames
![Page 18: 1 L2TP OVERVIEW 18-May-05. 2 Agenda VPN Tunneling PPTP L2F LT2P](https://reader035.vdocument.in/reader035/viewer/2022062716/56649dd25503460f94ac8d8d/html5/thumbnails/18.jpg)
18
L2F
Layer 2 Forwarding
![Page 19: 1 L2TP OVERVIEW 18-May-05. 2 Agenda VPN Tunneling PPTP L2F LT2P](https://reader035.vdocument.in/reader035/viewer/2022062716/56649dd25503460f94ac8d8d/html5/thumbnails/19.jpg)
19
L2F
Tunnel is constructed from the service provider.1. Remote user dials in to the local ISP network
access server using PPP/SLIP.
![Page 20: 1 L2TP OVERVIEW 18-May-05. 2 Agenda VPN Tunneling PPTP L2F LT2P](https://reader035.vdocument.in/reader035/viewer/2022062716/56649dd25503460f94ac8d8d/html5/thumbnails/20.jpg)
20
L2F (Cont.)
2. L2F builds a tunnel from the NAS to the private network.
Uses packet-oriented protocol that provides end-to-end connectivity, such as UDP, frame relay, etc. as the encapsulating protocol.
![Page 21: 1 L2TP OVERVIEW 18-May-05. 2 Agenda VPN Tunneling PPTP L2F LT2P](https://reader035.vdocument.in/reader035/viewer/2022062716/56649dd25503460f94ac8d8d/html5/thumbnails/21.jpg)
21
L2F (Cont.)
3. L2F establishes PPP connection between NAS and home gateway.
![Page 22: 1 L2TP OVERVIEW 18-May-05. 2 Agenda VPN Tunneling PPTP L2F LT2P](https://reader035.vdocument.in/reader035/viewer/2022062716/56649dd25503460f94ac8d8d/html5/thumbnails/22.jpg)
22
L2F (Cont.)
4. IP packets are sent over the PPP.
![Page 23: 1 L2TP OVERVIEW 18-May-05. 2 Agenda VPN Tunneling PPTP L2F LT2P](https://reader035.vdocument.in/reader035/viewer/2022062716/56649dd25503460f94ac8d8d/html5/thumbnails/23.jpg)
23
L2TP
Layer 2 Tunneling protocol
![Page 24: 1 L2TP OVERVIEW 18-May-05. 2 Agenda VPN Tunneling PPTP L2F LT2P](https://reader035.vdocument.in/reader035/viewer/2022062716/56649dd25503460f94ac8d8d/html5/thumbnails/24.jpg)
24
L2TP