Presentation is loading. Please wait.

Presentation is loading. Please wait.

Abdullah Alshalan Garrett Drown Team 3 CSE591: Virtualization and Cloud Computing.

Published byHoward Maxwell Modified over 9 years ago

Similar presentations

Presentation on theme: "Abdullah Alshalan Garrett Drown Team 3 CSE591: Virtualization and Cloud Computing."— Presentation transcript:

1 Abdullah Alshalan Garrett Drown Team 3 CSE591: Virtualization and Cloud Computing

2 Outline Project Goal New Technical Background Current Network Layout Roadmap of our Project Status of our tasks Summary Challenges Faced CSE591: Virtualization and Cloud Computing

3 Project Goal Provide users of Android devices with several reliable options for accessing a cloud via a VPN connection. CSE591: Virtualization and Cloud Computing

4 Technical Background There are several different protocols users may wish to use. PPTP L2TP L2TP/IPSec SSL VPN CSE591: Virtualization and Cloud Computing

5 PPTP Point-To-Point Tunneling Protocol (PPTP): Developed by Microsoft Generally: Maintains a control channel over a TCP connection. Through that, it initiates a GRE tunnel PPP packets are sent through a GRE tunnel (Generic Routing Encapsulation). The PPP traffic is authenticated using protocols like PAP, CHAP, etc. The PPP payload can be encrypted using MPPE. CSE591: Virtualization and Cloud Computing

6 L2TP Layer 2 Tunneling Protocol (L2TP): L2TP: It’s initiated over UDP L2TP itself does not provide any encryption or authentication. It simply provides the tunnel. L2TP/IPSec: 3 major steps to establish it: Negotiation of IPSec Security Association using pre- shared key or a certificate. Establishing ESP communication, hence a secure channel. Establishing a L2TP tunnel over the secure channel. CSE591: Virtualization and Cloud Computing

7 SSL VPN Encrypt everything above the Transport Layer using SSL protocols. Runs over TCP or UDP. Uses pre-shared keys or certificates for authentication Always uses the strongest encryption that both the server and client support. Capable of traversing NATs and firewalls and proxy servers. CSE591: Virtualization and Cloud Computing

8 Network Diagram CSE591: Virtualization and Cloud Computing Virtual Private Network

9 Roadmap of Project By midterm: Set up, document, and test all possible server (Linux/Windows) and protocol combinations with the native Android client. (95% Completed) Place a web server inside our VPN and have the mobile device access it through a VPN connection. (Completed) By final: Have L2TP/IPSec with Certificates working. Set up an SSL VPN Server (with OpenVPN) Find a client for SSL VPN (without need for rooting) Website for Registration Documentation of how we did what we did If time permits: Set up the native client to automatically reconnect when the connection is lost. CSE591: Virtualization and Cloud Computing

10 Native Android Client We have successfully set up the native Android VPN client to work with the following configurations: Linux using L2TP Linux using L2TP IPSec PSK Windows using PPTP with no encryption Windows using PPTP with encryption Windows using L2TP IPSec PSK CSE591: Virtualization and Cloud Computing

11 Native Android Client For each of the configurations we have documented the steps we took to set up the VPN Servers and the VPN clients on the Android device. This allows others to easily reproduce and expand on our work. In the future, we will add more screenshots to this document to help future users with the process. CSE591: Virtualization and Cloud Computing

12 Web Server inside VPN We have successfully set up a Web Server inside of our VPN testing environment. This allows us to verify that our VPN is working correctly. Once the Android device has connected to the VPN we then see if the device can access the web site hosted on this server, which would otherwise be unavailable. CSE591: Virtualization and Cloud Computing

13 Summary of Findings Server/ Client Linux ServerWindows Server L2TPL2TP CRT L2TP PSK SSL VPN PPTP w/Enc PPTP No Enc L2TPL2TP CRT L2TP PSK SSL VPN Native Android Client 3 rd Party Android Client CSE591: Virtualization and Cloud Computing

14 Challenges Faced Setting up the Web Server Dynamic IPs at ASU Setting up Apache Windows Firewall Setting up Linux VPN Servers Limited Documentation Personal solutions provided online Compatibility issues CSE591: Virtualization and Cloud Computing

15 Questions? CSE591: Virtualization and Cloud Computing

Download ppt "Abdullah Alshalan Garrett Drown Team 3 CSE591: Virtualization and Cloud Computing."

Similar presentations

Encrypting Wireless Data with VPN Techniques

Encrypting Wireless Data with VPN Techniques
1 Chapter 2: Networking Protocol Design Designs That Include TCP/IP Essential TCP/IP Design Concepts TCP/IP Data Protection TCP/IP Optimization.

1 Chapter 2: Networking Protocol Design Designs That Include TCP/IP Essential TCP/IP Design Concepts TCP/IP Data Protection TCP/IP Optimization.
Securing Remote PC Access to UNIX/Linux Hosts with VPN or SSH Charles T. Moetului WRQ, Inc. (206) 217-7048

Securing Remote PC Access to UNIX/Linux Hosts with VPN or SSH Charles T. Moetului WRQ, Inc. (206)
Setting Up a Virtual Private Network Chapter 9. Learning Objectives Understand the components and essential operations of virtual private networks (VPNs)

Setting Up a Virtual Private Network Chapter 9. Learning Objectives Understand the components and essential operations of virtual private networks (VPNs)
Module 5: Configuring Access for Remote Clients and Networks.

Module 5: Configuring Access for Remote Clients and Networks.
Virtual Private Networks. Why VPN Fast, secure and reliable communication between remote locations –Use leased lines to maintain a WAN. –Disadvantages.

Virtual Private Networks. Why VPN Fast, secure and reliable communication between remote locations –Use leased lines to maintain a WAN. –Disadvantages.
SCSC 455 Computer Security Virtual Private Network (VPN)

SCSC 455 Computer Security Virtual Private Network (VPN)
1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.

1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.
1 Configuring Virtual Private Networks for Remote Clients and Networks.

1 Configuring Virtual Private Networks for Remote Clients and Networks.
Guide to Network Defense and Countermeasures Second Edition

Guide to Network Defense and Countermeasures Second Edition
Virtual Private Networks and IPSec

Virtual Private Networks and IPSec
Hands-On Microsoft Windows Server 2003 Administration Chapter 11 Administering Remote Access Services.

Hands-On Microsoft Windows Server 2003 Administration Chapter 11 Administering Remote Access Services.
70-270, 70-290 MCSE/MCSA Guide to Installing and Managing Microsoft Windows XP Professional and Windows Server 2003 Chapter Twelve Implementing Terminal.

70-270, MCSE/MCSA Guide to Installing and Managing Microsoft Windows XP Professional and Windows Server 2003 Chapter Twelve Implementing Terminal.
Internet Protocol Security (IPSec)

Internet Protocol Security (IPSec)
VPN – Virtual Private Networking. VPN A Virtual Private Network (VPN) connects the components of one network over another network. VPNs accomplish this.

VPN – Virtual Private Networking. VPN A Virtual Private Network (VPN) connects the components of one network over another network. VPNs accomplish this.
Remote Networking Architectures

Remote Networking Architectures
Network Address Translation, Remote Access and Virtual Private Networks BSAD 146 Dave Novak Sources: Network+ Guide to Networks, Dean 2013.

Network Address Translation, Remote Access and Virtual Private Networks BSAD 146 Dave Novak Sources: Network+ Guide to Networks, Dean 2013.
Virtual Private Network (VPN) © N. Ganesan, Ph.D..

Virtual Private Network (VPN) © N. Ganesan, Ph.D..
Faten Yahya Ismael.  It is technology creates a network that is physically public, but virtually it’s private.  A virtual private network (VPN) is a.

Faten Yahya Ismael.  It is technology creates a network that is physically public, but virtually it’s private.  A virtual private network (VPN) is a.
1 © J. Liebeherr, All rights reserved Virtual Private Networks.

1 © J. Liebeherr, All rights reserved Virtual Private Networks.

Similar presentations

Ads by Google