Corporate virtual private networks (VPN) must not only provide secure site-to-site connectivity, but must also integrate remote access technologies for dial, DSL, and cable users of the VPN networks. Enterprise customers cannot just outsource wide-area network (WAN) connectivity to manage only remote access connections for corporate remote users. A decision to outsource for enterprise managers can also mean considering the outsourcing of remote access connectivity, including managing virtual home gateways and subscriber management. From a service provider (SP) point of view, it is only a natural progression to offer remote access connectivity to users of corporate VPNs. For example, cable providers can extend the last mile reach of corporate VPNs by offering remote access connectivity to corporate VPNs in partnership with the MPLS VPN provider. Remote users can access corporate VPNs using dial connections or dedicated connections. In either case, the traffic might need to be encrypted because it might traverse public networks. This chapter discusses how remote access and IPSec can be integrated with MPLS VPNs. Remote access is one of the most important services with Layer 3 VPNs. |