Virtual Private Networks - The Basics

Virtual Private Networks (VPNs) can extend a local area network (LAN) over the Internet to remote networks and remote client machines. A VPN uses the Internet to route LAN traffic from one location to another by encapsulating the data inside encrypted IP packets. The encrypted packets are unreadable by intermediary Internet devices and can contain any kind of network communications - such as file and printer sharing, e-mail, remote procedure calls, and database access.

VPNs can be setup using server computers, firewalls or routers. Client access to the VPN can be made using client-side VPN software or by connecting to an ISP that supports the VPN protocol.

VPNs solve the problem of accessing private servers over the Internet through a combination of IP encapsulation, cryptographic authentication and data payload encryption.

IP Encapsulation
IP encapsulation provides a way to protect the data while in transit between the remote client and the private LAN. Computers outside the VPN should not be able to snoop on the traffic exchanged between the remote client and private server or be able to insert their own data into the communication stream. This is accomplished by creating what people refer to as a private and protected "tunnel" through the public Internet. When an IP packet contains another IP packet this is called IP encapsulation, and it provides a mechanism to refer to a host within a private network when a direct network connection may not exist. When this is combined with data encryption then we've effectively created our virtual tunnel.

Cryptographic Authentication
Cryptographic Authentication is used to securely validate the identity of the remote client so that the private LAN can determine what level of security should be applied to that user. VPNs use the authentication process to determine whether or not a remote user can participate in the encrypted tunnel, and for exchanging the public key that will subsequently be used for data encryption.

data Payload encryption
Data Payload encryption uses a public key to encrypt the data field of the IP encapsulated packet. That is, data payload encryption is exactly like normal IP except that the data has been encrypted. It does not encrypt the header information, so details of the private network can be gleaned by analyzing the header information.

Advantages and Disadvantages
Compared to wide Area Networks (WANs), VPNs offer some advantages but, also, present some disadvantages.

 Advantages - cheaper than WANs - easier to setup than WANs Disadvantages - slower than WANs - less reliable than WANs - less secure than isolated WANs 

Example
Although there are a number of ways to configure a VPN here is an example of one scenario that is fairly common -- an employee wishes to work from home and exchange data between their home machine and a private web server on the corporate network. There are two important processes here -- the process of negotiating and building a VPN session, and the process of protecting and handling the data within an existing VPN connection. Here I'll briefly describe the latter and leave the former as a potential topic for a future article.

Suppose we have the following:
(a) a VPN client with a public IP address of 66.123.77.196 and a private IP address of 192.168.0.202 (provided by the corporation's dhcp server).
(b) a VPN server on the corporate network with two interfaces -- a public interface to the Internet that uses 168.156.192.75 and an interface to the private network with an IP of 192.168.0.101
(c) a web server on the corporate network with an IP address of 192.168.0.102

Prior to creating a VPN session the client host has one interface and a connection to the Internet through an ISP. The client machine can communicate with any host on the Internet but can not access the web server on the private network 192.168.0.X. After the VPN session has been created then the client host has 2 interfaces -- the original interface to the Internet and a new VPN interface. The new VPN interface becomes the default gateway -- that is, all packets will initially travel through the new interface. However, the VPN interface is not a physical network card -- it doesn't physically connect to anything. The VPN interface is used to encrypt and encapsulate packets that are subsequently sent as the payload of a new, outer packet. It is the outer packet that is sent out over the Internet (using the original interface) to the corporate VPN server.

The inner packet will use the client's private IP of 192.168.0.202 as the source IP address and the web server's private IP of 192.168.0.102 as the destination address. The VPN client encrypts the data field of the inner packet and this inner packet then becomes the payload of an outer packet. The outer packet uses the client's public IP of 66.123.77.196 as the source IP address and the public interface of the VPN server (168.156.192.75) as the destination IP. The IP encapsulated packet is then sent to the ISP and out over the Internet.

When the IP encapsulated packet reaches the VPN server at the edge of the private network it will unwrap the inner packet and decrypt its data field. Since the VPN server also has an interface to the private network it will then be able to forward the inner packet to the destination web server. When data is sent from the web server back to the client then the process is reversed -- that is, the VPN server handles the encryption/encapsulation and the VPN client is responsible for unwrapping/decoding.

Steve Leytus is a senior software engineer and develops applications for NutsAboutNets.com. For more information about low cost, PC-based diagnostic tools for installing, optimizing and trouble-shooting 802.11 (Wi-Fi) wireless networks please visit http://www.NutsAboutNets.com

Yoga Teacher Certification Houston Texas

The Nintendo Revolution Controller - Skepticism Meets Reality

Well over the past week or so I have had plenty of time to sit back and take a critical look at the new nintendo Revolution controller. Initially, when I first saw the teaser I was excited about the possibilities the new controller offered. However after some more reflection and further reading, though I am still enthusiastic, I think there are some serious questions that need to be asked.

nintendo has been an innovator in the video game industry since the early 1980s. From the very beginning, nintendo engineers have had to prove themselves. The introduction of the analogue controller and even the rumble pack was met with a great deal of skepticism, yet are considered industry standards today. However, a single hand remote style controller is arguably a much larger innovation and is met with even more skepticism.

It has been reported on several websites that the Nintendo Revolution will be compatible with gamecube titles. Of course this raises questions on how the new controller will function with these games

What we are telling people right now is that there are several peripherals in the works that will be used for the older games, said Perrin Kaplan, vice President of Marketing and Corporate Affairs for nintendo. Of course, people will be able to plug their gamecube controller right in and use that, but if they want, they can use the Revolutions peripherals for an entirely new and fresh experience.

Will gamers be able to adapt to a single hand controller? I think the answer to this question will depend on game developers. The success of the controller and the console for that matter depends on whether-or-not game developers will be able to produce games which compliment the new controller.

This also raises questions over game cross-over from one system to another. With the introduction of a whole new controller, effectively changing the way we play games, well we see a drop in big title games available for multiple systems?

With the release of the new teaser and a slew of new images, people are forgetting that the new nintendo Revolution controller is not at the final design stage.

No, this is not the final design. You wont see that until the release is here, but we are getting much closer, explained Kaplan.

Over the next several months, more information will become available. Information which will either put much of the skepticism to rest, or more likely, create even more. With a product like the nintendo Revolution controller, apprehension and skepticism are natural, making this a critical time for nintendo. With the release of the Xbox before the end of 2005 and the processing power of the Playstation 3 Nintendo really does have to come up with something revolutionary to compete in the next generation game console market. Does Nintendo really have something special for us? only time well tell.

Yoga Chi Gung Dvd

Selection For Home Security System And Home Review Security System Wireless

Since there are different home security systems are competing with each other for gaining the superiority in the market, but mostly become confused about the selection of the best home security system. Because many competitors are investing millions of dollars for promoting their item, however many home review security system wireless journals and reviews are published by many manufacturers monthly, this helps greatly in choosing for the best home security system. More over home security has different meaning for different people. There can be a different approach for lowbrow as compared to the selection of a high brow. So for this home review security system wireless review is really guidance as far as decision of getting a best security system is questioned. These reviews offer a comparative study for different home security systems by different manufacturers so that the customer could select a better alert security system according to his suitable needs.

Need Of Choosing Home review Security system wireless Journals

It is normally complained by many people that they have a less customer counseling for having the best home review security system wireless journals and reviews, but one should not be worried at all in the presence of internet utility. Because many companies also promote their products on line, and marketing through such source is very reliable and qualitative. There are a lot of websites where a user can get a professional approach as far as home review security system wireless information are concerned. Moreover, time to time updated information catalogs are also there to brows through the relevant information that one may need. Also the professionals who are adept in and able to home review security system wireless can also be consulted. Franchises are also there to approach.

Home review Security system wireless: Pamphlets And Informative Guides Role

Whenever you are going to get something from market, it is compulsory to window-shop for the products you are interested in. Reviewing the specifications and features can be very helpful for it gives you a lot of information and escape you from any exaggeration as a part of marketing. It can also reveal the density of matter if you were going in wrong directions. Spending money is an important issue when buying a wireless tech based system. So before making your deal solid, it is far conducive to read and compare the pamphlets or guides or what else the informative material about the item is provided.

Yoga In Romfort Cl