Virtual Private Networks (VPNs) are a classic resource designed to securely and inexpensively extend the reach of corporate networks. Several options available are built on top of IPSec, a framework that deals with the tasks of ensuring Confidentiality, Integrity, Authentication of origin and secure key distribution for VPNs.
Some of the notable strengths of IPSec are its independence of the transport (UDP, TCP or raw IP) and the provision for easy replacement of one or more of its components (such as the hash functions and cryptographic algorithms) so that it can keep up with hardware evolution and what it means in terms of feasibility of brute force attacks.
If you are familiar with Cisco IOS software, you probably heard terms such as Classic IPSec, IPSec/GRE, Virtual Tunnel Interface (VTI), EasyVPN, Dynamic Multipoint VPN (DMVPN)… But, which of these site-to-site VPN options available on Cisco IOS software should you select ?
In an attempt to help you figure out the answer to this question, I produced a series of small articles that deal with VPN Positioning...
(I do hope the material to be useful). Good Reading !
My blog may be a source of useful information on Security and Networking topics. Stay tuned !
* The new posts are announced on twitter: @alexandre_mspm
Other blog of interest: