Presentation is loading. Please wait.

Presentation is loading. Please wait.

91.527 - Human Computer Interaction - Fall 2010 Class project By Khang Nguyen Virtual Private Network Design for Remote Access Cambridge - SFO Airport.

Published byBernardo Hulen Modified over 9 years ago

Similar presentations

Presentation on theme: "91.527 - Human Computer Interaction - Fall 2010 Class project By Khang Nguyen Virtual Private Network Design for Remote Access Cambridge - SFO Airport."— Presentation transcript:

1 91.527 - Human Computer Interaction - Fall 2010 Class project By Khang Nguyen Virtual Private Network Design for Remote Access Cambridge - SFO Airport Test Site

2 VPN Concept VPN Benefit SSL SonicWall VPN-200 Case Study – SFO Airport Site Using VNC (Virtual Network Control) Conclusion Virtual Private Network Access for SFO Airport Lidar System

3 3 Institutions, companies often want private networks for security. – Costly! Separate routers, T1 links, DNS infrastructure. With a VPN, institution’s inter-office traffic is sent over public Internet instead. – But inter-office traffic is encrypted before entering public Internet Virtual Private Networks (VPNs)

4 4 San Francisco New York Dallas Chicago Fully Meshed Leased Line or Frame Relay Network San Francisco New York Dallas Chicago Internet Fully meshed VPN network LAN-to-LAN: Leased Line and VPN

5 IP header IPsec header Secure payload IP header IPsec header Secure payload IP header IPsec header Secure payload IP header payload IP header payload headquarters branch office salesperson in hotel Public Internet laptop w/ IPsec Router w/ IPv4 and IPsec Router w/ IPv4 and IPsec Virtual Private Network (VPN)

6 6 VPN Benefits Save Money (Reduce NW Costs by 30-60%) –Reduce private leased line charges Increase Business Speed and Flexibility –Internet can be accessed everywhere through many technologies –Internet capacity is available on demand Save Money (Reduce NW Costs by 30-60%) –Reduce private leased line charges Increase Business Speed and Flexibility –Internet can be accessed everywhere through many technologies –Internet capacity is available on demand VPN Technology

7 7 Basic VPN Concepts –Tunneling –Encryption –Authentication Associated VPN Concepts –Routing –Firewalling –Load Balancing Basic VPN Concepts –Tunneling –Encryption –Authentication Associated VPN Concepts –Routing –Firewalling –Load Balancing

8 8 Sonicwall SSL-VPN 200

9 9 VPN Components Sonicwall VPN-200 appliance – Dedicated Hardware Platform – Secure Sockets Layer VPN NetExtender for Windows – Not require any manual client installation. – Transparent to end user – IPSec VPN – Works with existing client and server applications

10 Router Setup with static IP address

11 Router Port forwarding

12 SonicWall VPN-200 Setup

13 SSL-VPN NetExtender

14 Equipments & ISP Linksys router Cable/DSL 4-Ports BEFSR41 $125 Sonicwall VPN 200 $500 NightHawk Power Recycle $500 4 Ports Web Remote power $175 8 Ports Switch $50 ISP Wireless with static IP Covad Communication provide the service 10/10M at the cost $900 per month

15 Cambridge-SFO Testing Site Internet Router Cambridge, MA Benefits: Extend the network to remote users WinExtraction PC Lidar System NAS VPN Client NetExtender ISP Sonic VPN - 200 ADS-B PC SFO Lidar Testing Site

16 Linksys Router 192.168.1.1 SonicW VPN-200 192.168.1.52 Power Recycle Night Hawk 314-253-0978 3188-3 4 Outlets Web Remote Power Control 192.168.1.2 ISP Covad 209.172.117.162 On/Off Power 110 V 8 ports Switch 10/100 Lidar System 192.168.1.25 10/100 10/10 Wireless 11A-5.6GHz 10/100 On/Off Win Extraction PC 192.168.1.3 Weather Sensor PC 192.168.1.47 On/Off 10/100 FTP Server from Cambridge Virtual LAN Granting VPN Access Requesting VPN Access On/Off VPN Access at SFO Lidar Network

17 17 Case Study – SFO Lidar System SFO Lidar Systems: Using VNC (virtual Network Control) application to access to – A Lidar System at San Francisco Airport SOLUTION It creates and maintains a virtual link. It encrypts and decrypts data to reduce snooping by others It guarantees the authenticity of the sender and receiver

18 WindTracer Lidar at SFO Airport Wireless ISP

19 Environmental Equipment Shelter: Interior Subsystems-Lidar Movable LRU (Scanner Driver) Movable LRU (SMCC) Movable LRU (Monitor/Keyboard) Movable LRU (Gateway PC) Tall Equipment Rack Houses majority of electronics Local GUI operation Tall Equipment Rack Houses majority of electronics Local GUI operation Movable LRUs can be slid out without disconnecting cables from rear panel.

20 SSL-VPN NetExtender Connection to SFO

21 21 Case Study – SFO Lidar System SFO Lidar Systems: Using VNC (virtual Network Control) application to access to – A Lidar System at San Francisco Airport

22 22 Connecting to SFO Lidar System

23 Lidar Display

24 24 Conclusion Save Money (Reduce NW Costs by 30-60%) Increase Business Speed and Flexibility Improve Security Use Existing Applications, Infrastructure and User Environments Build a secured, easy to use, scalable and standard base Business Network Increase your Business competitiveness thru SonicWall VPN

25 25 Thank You khang.nguyen@dot.gov

Download ppt "91.527 - Human Computer Interaction - Fall 2010 Class project By Khang Nguyen Virtual Private Network Design for Remote Access Cambridge - SFO Airport."

Similar presentations

Encrypting Wireless Data with VPN Techniques

Encrypting Wireless Data with VPN Techniques
All rights reserved © 2000, Alcatel 1 CPE-based VPNs Hans De Neve Alcatel Network Strategy Group.

All rights reserved © 2000, Alcatel 1 CPE-based VPNs Hans De Neve Alcatel Network Strategy Group.
Virtual Private Networks COSC541 Project Jie Qin & Sihua Xu October 11, 2014.

Virtual Private Networks COSC541 Project Jie Qin & Sihua Xu October 11, 2014.
1 Intel / Shiva VPN Solutions Stephen Wong System Engineer.

1 Intel / Shiva VPN Solutions Stephen Wong System Engineer.
Securing Remote PC Access to UNIX/Linux Hosts with VPN or SSH Charles T. Moetului WRQ, Inc. (206) 217-7048

Securing Remote PC Access to UNIX/Linux Hosts with VPN or SSH Charles T. Moetului WRQ, Inc. (206)
Setting Up a Virtual Private Network Chapter 9. Learning Objectives Understand the components and essential operations of virtual private networks (VPNs)

Setting Up a Virtual Private Network Chapter 9. Learning Objectives Understand the components and essential operations of virtual private networks (VPNs)
Module 5: Configuring Access for Remote Clients and Networks.

Module 5: Configuring Access for Remote Clients and Networks.
Virtual Private Networks. Why VPN Fast, secure and reliable communication between remote locations –Use leased lines to maintain a WAN. –Disadvantages.

Virtual Private Networks. Why VPN Fast, secure and reliable communication between remote locations –Use leased lines to maintain a WAN. –Disadvantages.
SCSC 455 Computer Security Virtual Private Network (VPN)

SCSC 455 Computer Security Virtual Private Network (VPN)
1 Configuring Virtual Private Networks for Remote Clients and Networks.

1 Configuring Virtual Private Networks for Remote Clients and Networks.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 11: Planning Network Access.

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 11: Planning Network Access.
K. Salah 1 Chapter 31 Security in the Internet. K. Salah 2 Figure 31.5 Position of TLS Transport Layer Security (TLS) was designed to provide security.

K. Salah 1 Chapter 31 Security in the Internet. K. Salah 2 Figure 31.5 Position of TLS Transport Layer Security (TLS) was designed to provide security.
VIRTUAL PRIVATE NETWORKS (VPN). GROUP MEMBERS ERVAND AKOPYAN ORLANDO CANTON JR. JUAN DAVID OROZCO.

VIRTUAL PRIVATE NETWORKS (VPN). GROUP MEMBERS ERVAND AKOPYAN ORLANDO CANTON JR. JUAN DAVID OROZCO.
Eric Kilroy. Introduction  Virtual Private Network A way to connect to a private network through a public network such as the internet.

Eric Kilroy. Introduction  Virtual Private Network A way to connect to a private network through a public network such as the internet.
Lesson 11-Virtual Private Networks. Overview Define Virtual Private Networks (VPNs). Deploy User VPNs. Deploy Site VPNs. Understand standard VPN techniques.

Lesson 11-Virtual Private Networks. Overview Define Virtual Private Networks (VPNs). Deploy User VPNs. Deploy Site VPNs. Understand standard VPN techniques.
Goal of The Paper  What exactly is a VPN?  Why do you need a VPN?  what are some of the technologies used in deploying a VPN?  How does a VPN work?

Goal of The Paper  What exactly is a VPN?  Why do you need a VPN?  what are some of the technologies used in deploying a VPN?  How does a VPN work?
Virtual Private Networks Globalizing LANs Timothy Hohman.

Virtual Private Networks Globalizing LANs Timothy Hohman.
Virtual Private Networking Karlene R. Samuels COSC513.

Virtual Private Networking Karlene R. Samuels COSC513.
Internet Security Seminar Class CS591 Presentation Topic: VPN.

Internet Security Seminar Class CS591 Presentation Topic: VPN.
Remote Networking Architectures

Remote Networking Architectures

Similar presentations

Ads by Google