Virtual Private Networking

This course can be tailored for on-site delivery to various lengths, ranging from 3 hours to 1-2 days.  This seminar has also been delivered at Networld+Interop, Internet World, and The Internet Security Conference.

Overview:

Virtual private networking promises to solve a range of problems faced by enterprises today. Organizations that depend on remote access for a growing portion of their intra-business communication must address the potential vulnerability of their mission critical applications. As the percentage of mobile employees continues to increase, virtual private networks (VPNs) may be the best means of controlling  both cost and the security of the enterprise.

The impact of VPNs goes beyond secure and cost-effective remote access. Currently emerging security technology and public key infrastructure will enable secure inter-business collaboration through secure extranets. As VPN technology matures, organizations will increasingly utilize public Internet services for LAN-to-LAN communications, intranets and other mission-critical application service networks.

This unique seminar is designed to help the IT professional quickly learn the most critical business, technology, and deployment aspects of VPNs. We’ll talk you through the alphabet soup of PKI, L2TP, PPTP, IPsec, IKE, NAT, SSH, SSL, QOS and more. We’ll take a look at technology advances like XAUTH and RSIP and how they’ll impact VPN implementation. We’ll explain deployment pitfalls and how to avoid them.  We’ll show you how VPNs have been implemented with real-world case studies and demonstration of products hand-selected by our impartial team of experts.

Syllabus:

Introduction to VPNs

• Briefly introduce the kinds of VPNs, overview of seminar

Cryptography for VPNs

• Basics of packet and message signing, public and secret key techniques, key exchanges for VPNs

Public Key Infrastructure for VPNs

• PKI elements for VPNs: Certificate Authorities, cross-certification, protocols, repositories, CRLs

Secure Remote Access Using Layer 2 VPNs

• PPTP, L2TP, how do they compare, when to use each, outsourcing secure remote access to your ISP

Layer 3 Secure IP VPNs

• IPsec and IKE services, operation, use of PKI
• L2TP over IPsec: why or why not ?
• XAUTH and Hybrid: integrating legacy authentication, support for OTP, RADIUS, SecurID, DHCP use

L2/L3 VPN Case Studies

Application and Circuit Level Proxy VPNs

• SSH and SOCKS
• Granular access control, application content filtering/stripping

Securing Application Streams: SSL and VPNs

• Secure E-Mail, Telnet, HTTP: when are they sufficient?
• SSL and VPNs, Secure Extranets

Quality of Service VPNs

• Traffic prioritization, policing and shaping, SLAs
• QOS-COS-TOS protocols (IEEE802.1p, DiffServ, MPLS, RSVP)

VPN Deployment Considerations

• Relationship of VPN devices to firewalls, NAT, routers
• Emergence of realm specific IP (RSIP) and impact on VPNs
• Policy distribution, dynamic configuration, user management

VPN Case Studies

Conclusions: The Future of VPNs