With the acceleration of global market integration and the further development of information technology, all walks of life and various types of enterprises are using information technology more and more to improve the management level of enterprises and to expand trans-regional business. IP VPN has been favored by the use of public network resources to establish a safe, reliable, economical, efficient, convenient and high-speed transmission of the enterprise special Network characteristics.
Demand analysis
Guangzhou company is mainly engaged in some international famous consumer goods brand products agent, distribution, warehousing, transportation, distribution and packaging business. The company is headquartered in Guangzhou, in several cities nationwide set up a branch and distribution center, distribution network has covered all the provinces, municipalities and autonomous regions. Earlier, a company in Guangzhou has implemented the ERP system, but because there is no company's own private network, so the enterprise's database server has been exposed to the public network, rather unsafe. In order to prevent the problem, strengthen the unified management of the network, at the same time facilitate the network access to travel personnel, a Guangzhou company decided to build an effective VPN network, and in the various VPN solutions for comprehensive evaluation, the final choice based on ADSL VPN solution.
System Features
Because of a company subordinate in Guangzhou, each enterprise has a local area network, all through 512K ADSL Internet, and the original C/s structure of the ERP so that each branch has 5-8 computers need to visit the headquarters of the database, plus the various branches do not need to visit each other, So decided to establish a star-structured VPN application system for a company in Guangzhou (pictured).
The VPN network of a company in Guangzhou takes ADSL as the connecting line, and uses the router as the interconnection equipment of the network. Compared with the general VPN network, the biggest feature of the VPN network of a company in Guangzhou is that it realizes the perfect combination of security and low cost, which is closely related to the Iceflow R5000 router. The device belongs to a third layer VPN router based on IPSec, which integrates a variety of security technology and network communication technology, and can build a unified and efficient IP VPN network for customers on the wide-area network of full dynamic IP (internet/metropolitan area Network).
The VPN network solution for a company in Guangzhou not only supports the IPSec, GRE, PPTP protocols, and Idea, DES, 3DES encryption algorithms, but also can enhance the security performance of the internal network by means of Ike, shared secret key authentication and so on. In addition, in the process of data transmission, because the VPN network has set up firewall and state detection function, it can realize the conversion of network address in NAT mode, guarantee the security of internal network, and prevent the attack of many ways, such as DOS, ping package, etc. Provides secure point-to-point and remote access traffic for workers who are distributed around the world. Iceflow R5000 Router Built-in firewall function can be the headquarters of the LAN and public network for security isolation, so that the network database server no longer exposed to the public network, under the protection of security, so that the original ERP system for enterprises to provide a dedicated, safe and efficient network application environment.
In addition to safety and reliability, the solution also has a good economy, so that all enterprise customers can fully enjoy the benefits of ADSL. Because the VPN network is based on ADSL, so no matter in the equipment input, or in the monthly line costs, Hao Lin company did not spend too much money.
In addition, a company in Guangzhou VPN network in the reliability, good performance in terms of manageability, scalability, transmission speed, flexibility, and so on, for example, in networking, because routers can support 150 of VPN nodes interconnected, so whether a company in Guangzhou and partner Interconnection, corporate headquarters and branch interconnection, or the field staff remote access to the local area network, a company in Guangzhou VPN network can meet the needs of different objects of security networking.
Functional characteristics
In the VPN network of a company in Guangzhou, branch offices can access the company's headquarters network through a VPN tunnel erected by routers, work report or data transmission, while in the field staff can access the company's headquarters database through remote access, obtain relevant information, or carry out remote video, voice and other communication. In a word, the use of ADSL based routers to build VPN network for a company in Guangzhou to bring a safe, convenient and reliable network applications:
1, in this VPN network topology, at the same time support the network without center node and the Star Network with center node, can provide reliable, safe, flexible, uninterrupted operation IP VPN network application for the original ERP system of a company in Guangzhou. For example, Hao-Lin company headquarters senior leadership can use ERP system to achieve including financial, human resources, sales, product inventory, product circulation and other aspects of information management, such as headquarters and branch in the financial management of the exchange can occupy the VPN resources alone, greatly improve the financial data in the transmission process speed, Confidentiality and security and other performance.
2, the router for a company in Guangzhou VPN network provides advanced flow control technology, so that in order to ensure that the Headquarters VPN channel priority to use bandwidth, but also can take into account the Internet requirements of branch offices.
3, the network was completed, a company network administrator in Guangzhou as long as the landing on the public web directory server, can be the entire VPN network of all routers in a unified management.
4, network administrators can use the router's own firewall function, establish a specific security strategy to prevent all kinds of uncertain network attacks from outside, and through the log and audit methods, analysis of various potential risks.
In addition, because of the use of directory server technology, any node can reconnect to the VPN network within 10 seconds after the IP address changes.
Application effect
For the construction experience of VPN network, a senior leader of Hao Lin company thinks, because in the past each branch office basically uses ADSL Internet, so adopt VPN solution not increase the company any network construction expense. A network management staff said that before the VPN network was completed, the company has tried some software solutions, but the sense of stability is poor, and the company as long as someone downloads, VPN basically can not be used, and the adoption of the scheme, the network not only stable, 24 hours without disconnection, And because the product is equipped with the bandwidth control function, so now even if someone downloads, the VPN network is still "unimpeded." The network administrator also pointed out that, compared with the past, now a lot of internet management, because as long as the landing on the public web directory server, it can be unified management Network system of 7 routers. It seems that up to now a company in Guangzhou to their new VPN network is very satisfied.