What does vpn mean?

VPN (virtual private network, virtual? Private? Network) is a communication method used to connect private networks between large and medium-sized enterprises or groups. It uses tunneling protocol to achieve private message security effects such as confidentiality, sender authentication and message accuracy.

VPN technology can use insecure network to send reliable and secure messages, which can be realized by means of servers, hardware and software.

brief introduction

The full name of VPN is virtual private network, which is a private private private network (intranet) established by encryption on the basis of public network. Vpn is widely used in enterprises and companies. Remote access of vpn is mainly realized by encrypting data packets and converting data through gateway. There are many types of VPN, but most of them are classified according to protocol types. Server, software and hardware can all realize vpn.

network function

VPN belongs to remote access technology, which is simply to use public network to build private network. For example, an employee of a company is on a business trip to other places, and he wants to access the server resources in the intranet. This kind of access belongs to remote access.

In the traditional enterprise network configuration, the traditional method is to rent DDN (Digital Data Network) private line or frame relay, which will inevitably lead to high network communication and maintenance costs. For mobile users (mobile office workers) and remote individual users, they usually enter the enterprise LAN through dial-up lines (Internet), but this will inevitably bring security risks.

The solution for foreign employees to use VPN to access intranet resources is to set up a VPN server in the intranet. After connecting to the local Internet, foreign employees connect to the VPN server through the Internet, and then enter the enterprise intranet through the VPN server. In order to ensure the security of data, the communication data between VPN server and client is encrypted. With data encryption, we can think that data is transmitted safely on a dedicated data link, just like setting up a private network, but in fact VPN uses a public link on the Internet, so VPN is called a virtual private network, and its essence is to encapsulate a data communication tunnel on the public network by using encryption technology. With VPN technology, users can use VPN to access intranet resources, whether they are on business trips in other places or working at home, as long as they can access the Internet, which is why VPN is so widely used in enterprises.

Realization mode

There are many ways to realize VPN, and the following four are commonly used:

1.VPN server: In a large LAN, VPN can be realized by building a VPN server in the network center.

2. Software VPN: VPN can be realized by special software.

3. Hardware VPN: VPN can be realized by special hardware.

4. Integrated VPN: Some hardware devices, such as routers and firewalls, all contain VPN function, but generally hardware devices with VPN function are more expensive than those without this function.

Main advantages

VPN enables mobile employees, remote employees, business partners and others to connect to the corporate network by using a locally available high-speed broadband network connection such as DSL, cable TV or WiFi network. In addition, high-speed broadband network connection provides an economical and efficient way to connect remote offices.

A well-designed broadband VPN is modular and extensible. VPN enables users to use the Internet infrastructure that is easy to establish, and new users can join the network quickly and conveniently. This capability means that enterprises can provide a lot of capacity and applications without adding additional infrastructure.

VPN can provide a high level of security, use advanced encryption and identification protocols to protect data from prying eyes, and prevent data thieves and other unauthorized users from touching these data.

Full control, virtual private network enables users to use ISP facilities and services, while fully controlling their own networks. Users only use the network resources provided by ISP, and can manage other security settings and network management changes by themselves. You can also set up your own virtual private network within the enterprise.

Main disadvantages

Enterprises cannot directly control the reliability and performance of VPN based on Internet. Organizations must rely on Internet service providers that provide VPN to ensure the operation of services. This factor makes it very important for enterprises to sign service level agreements with Internet service providers, which guarantee various performance indicators.

It is not easy for enterprises to create and deploy VPN lines. This technology requires a deep understanding of network and security issues, and requires careful planning and configuration. Therefore, it is a good idea to choose an Internet service provider to take charge of most VPN operations.

VPN products and solutions from different vendors are always incompatible, because many vendors are unwilling or unable to comply with VPN technical standards. Therefore, mixing products from different manufacturers may cause technical problems. On the other hand, using the supplier's equipment may increase the cost.

When using wireless devices, VPN has security risks. Roaming between access points is particularly prone to problems. When users roam between access points, any solution using advanced encryption technology may be breached.