VPN application very much, from the access to the router, we can see the development of VPN very quickly, has become a very important part of the communications industry. The same VPN router as a strong applicability of a route, its role is also very important. Virtual Private Network (VPN) is one of the most promising new means of communication that balances the applicability and price advantage of the Internet. The
uses a shared IP network to establish a VPN router connection that enables businesses to reduce their reliance on expensive leased lines and complex remote access scenarios. It is predicted that by 2001, the number of VPN router services will be more than 10 billion U.S. dollars, while the annual market number of equipment will reach 1.5 billion U.S. dollars.
Excellent VPN router basic quality
Www.3lian.com
Enterprises can use VPN routers to accomplish a variety of transactions, from file transfer, business partner transaction processing and cooperative applications, to database and remote dial-up access, VPN routers can transmit many important applications and important data, and can enjoy the benefits of saving money by leveraging the public IP network. But saving only money is not enough. Because of today's network capacity and the growing number of important business data, there must be an automated VPN installation and operation, as well as a wide range of security and efficient performance, which is the two sometimes contradictory features. Dynamic VPN Exchange brings automation operation and security to public network. Now the VPN technology has brought a ray of light to the broad development of VPN, but if it's equipment and operating costs are too high, then the advantages of VPN can not be fully reflected. In order to successfully broaden the scope of business applications, the VPN router must have the following basic qualities:
1. Easy installation and automatic operation management.
VPN routers should be installed and managed as simple as the hub, and they should not require manual configuration or maintenance of the device.
2. Dynamic connection.
The forwarding of a VPN router over a network should be convenient and efficient, largely determined by the needs of the user and the organization's application. In addition, because dynamic routing choices must be judged, they should have the necessary intelligence to optimize bandwidth, because the static configuration of IP networks does not meet the need for enterprises to continuously handle connectivity changes.
3. Security. The
VPN must provide comprehensive security to ensure secure transmission of critical data on the public network. In addition to encapsulation and encryption, all data that carries installation and maintenance information into the control path must be protected. VPNs must also be open and adaptable to standards in order to ensure future validation and network security technology implementation. Products and services in the VPN market have grown rapidly. By contrast, many VPN vendors have competed in the criteria for defining and configuring VPNs. IpsecAs a data encapsulation protocol, the process of verification and encryption is defined. Although the IETF defines a major management protocol for IPSec, many vendors are also rapidly implementing IPSec standards and their associated security mechanisms in their VPN products.
At present, the VPN router products are mainly divided into two types of software and hardware: For these reasons, hardware-based VPN router devices are often a better choice. They place encryption/decryption in high-speed hardware, better prevent illegal intrusion, and they operate more easily. However, this hardware scheme is very expensive, with a price range ranging from USD 3500 to $10,000 or higher. Hardware scenarios are also flawed:
1. Operational difficulties.
Simplicity is inherent in its nature, but the hardware encryption machine for the VPN router also brings a lot of extra overhead to the operation. The installation of a VPN router typically requires skilled technologists to configure, address, and complete other required settings. In addition, the provision of new services, load balancing and other management needs, but also increased the burden of operations.
2. The invariance of the layout.
Today's products are only suitable for point-to-point connections, they cannot be well connected on highly dynamic networks because they do not add smart routers, resulting in increased costs and system complexity.
3. Limited security management.
Although most hardware products support IPSec authentication, integrity, and encryption techniques for data transmission over a VPN router, they are vulnerable to hacking, such as spoofing
&NBSP for key control protocols that set up and complete VPN connection management;