Section 8.7 Virtual Private Networks

Previous page
Table of content
Next page
   

8.7 Virtual Private Networks

Virtual Private Networks (VPNs) are an excellent way for two systems that trust each other to have their packets tunnel through any number of systems that these two do not trust. They give all the security of private networks (that tend to be trustworthy but very expensive) with the cost effectiveness of public networks. Another advantage of private networks, guaranteed bandwidth, now is becoming available through some ISPs.

There are a number of commercial VPN products and this is what IPsec is intended for. However, the secure shell (SSH) provides this too and is an excellent solution for most people. SSH allows protected shell and X sessions as well as generic TCP connections. See "Protecting User Sessions with SSH" on page 409.

Even the coveted NFS using UDP could be made to run over SSH with the use of a simple home-grown client/server system, where each side listens on the appropriate UDP ports to the "real" NFS client and server and then conveys this information between the home-grown client and server using TCP over the SSH-secured TCP connection. This should be a few days' effort for an experienced network programmer.

   
Top

Previous page
Table of content
Next page
Real World Linux Security Prentice Hall Ptr Open Source Technology Series
Real World Linux Security Prentice Hall Ptr Open Source Technology Series
ISBN: N/A
EAN: N/A
Year: 2002
Pages: 260
BUY ON AMAZON
Agile Project Management: Creating Innovative Products (2nd Edition)
OpenSSH: A Survival Guide for Secure Shell Handling (Version 1.0)
Introducing Microsoft Office InfoPath 2003 (Bpg-Other)
VBScript Programmers Reference
Java How to Program (6th Edition) (How to Program (Deitel))
User Interfaces in C#: Windows Forms and Custom Controls
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy