Vodafone PowerPoint template
Download
Report
Transcript Vodafone PowerPoint template
Vodafone MachineLink 3G
VPN functionality
Feature Spotlight
1
Integrated M2M Terminals
Introduction Vodafone MachineLink
3G v1.0
C3 confidentiality classification
What is the VPN function of the
MachineLink 3G?
A virtual private network (VPN) is a secure connection
between two or more endpoints on a network.
There are two types of VPN scenarios:
• Site to site VPN where data is encrypted from one
VPN gateway to another over a third party network
such as the internet
• Remote Access VPN where a secure connection is
established between an individual computer and a
VPN gateway.
The MachineLink 3G Router supports the following
VPN protocols:
• IPSec
• OpenVPN
• PPTP
• GRE
2
Integrated M2M Terminals
Introduction Vodafone MachineLink
3G v1.0
C3 confidentiality classification
IPSec
IPSec is a VPN protocol operating at the internet protocol (IP) layer of the internet
protocol suite.
It can be used to secure data flow in the following configurations:
• Host-to-host
• Network-to-network
• Network-to-host
OpenVPN
OpenVPN is an open source virtual private network program for creating point-to-point or
server-to-multi-client encrypted tunnels between host computers.
It can traverse network address translation (NAT) and firewalls and provides 3 methods of
authentication:
• Certificate
• Pre-shared key
• Username/password
3
Integrated M2M Terminals
Introduction Vodafone MachineLink
3G v1.0
C3 confidentiality classification
PPTP-Client
The Point-to-Point Tunnelling Protocol (PPTP) is a method for implementing virtual
private networks using a TCP and GRE tunnel to encapsulate PPP packets. PPTP
operates on Layer 2 of the OSI model and is included on Windows computers.
GRE
The Generic Route Encapsulation (GRE) protocol is used in addition to Point-to-Point
Tunnelling Protocol (PPTP) to create VPNs (virtual private networks) between clients
and servers or between clients only. Once a PPTP control session establishes the VPN
tunnel GRE is used to encapsulate the data or payload.
4
Integrated M2M Terminals
Introduction Vodafone MachineLink
3G v1.0
C3 confidentiality classification
What can you do with VPNs?
With respect to the MachineLink 3G Router, the benefits of using a VPN include:
• Security – All traffic in and out of the router is encrypted (except when using GRE)
ensuring the integrity of your network.
• Common network – the devices can be placed in the same subnet meaning that they
can be more easily administered.
• Anonymity – because the router is connecting to a VPN gateway, any remote
connections it may make appear to come from the gateway.
• Reduce maintenance costs and time – when you have multiple routers on the same
network, you can save time and money by reducing the effort required to service them.
5
Integrated M2M Terminals
Introduction Vodafone MachineLink
3G v1.0
C3 confidentiality classification
How to configure IPSec
6
Integrated M2M Terminals
Introduction Vodafone MachineLink
3G v1.0
C3 confidentiality classification
How to configure IPSec (continued)
Select encapsulation, encryption and hash types
7
Integrated M2M Terminals
Introduction Vodafone MachineLink
3G v1.0
C3 confidentiality classification
How to configure IPSec (continued)
Enter Dead peer detection keep alive time
and timeout, re-key interval, SA life time
and then select the key mode.
8
Integrated M2M Terminals
Introduction Vodafone MachineLink
3G v1.0
C3 confidentiality classification
How to configure OpenVPN server
9
Integrated M2M Terminals
Introduction Vodafone MachineLink
3G v1.0
C3 confidentiality classification
How to configure OpenVPN server
Enter the server details. All fields are required.
When all fields have been completed, click
Generate CA certificate button
10
Integrated M2M Terminals
Introduction Vodafone MachineLink
3G v1.0
C3 confidentiality classification
How to configure OpenVPN server
If using certificate authentication, enter the
details for at least one certificate and click
Generate.
After its generated, you can use the
Download button to download the certificate
file.
Certificates may be revoked in the future if
they are no longer necessary or security has
been compromised.
Enter the remote network address
and network mask if you know them.
11
Integrated M2M Terminals
Introduction Vodafone MachineLink
3G v1.0
C3 confidentiality classification
How to configure OpenVPN client
To use certificate authentication,
scroll to the bottom of the screen
and use this section to upload the
certificate first.
12
Integrated M2M Terminals
Introduction Vodafone MachineLink
3G v1.0
C3 confidentiality classification
How to configure OpenVPN client
(continued)
Select uploaded certificate from drop
down list.
Certificate information is displayed.
13
Integrated M2M Terminals
Introduction Vodafone MachineLink
3G v1.0
C3 confidentiality classification
How to configure OpenVPN P2P
14
Integrated M2M Terminals
Introduction Vodafone MachineLink
3G v1.0
C3 confidentiality classification
How to configure OpenVPN P2P (continued)
Enter the IP address and subnet
mask of the remote network
On both server and client sides, click the
Generate button to create a secret key to
be shared with the other router.
Use the Client secret key upload field to
upload the secret key file from the other
router.
15
Integrated M2M Terminals
Introduction Vodafone MachineLink
3G v1.0
C3 confidentiality classification
How to configure the PPTP client
16
Integrated M2M Terminals
Introduction Vodafone MachineLink
3G v1.0
C3 confidentiality classification
How to configure the PPTP client (continued)
Click Save to complete the configuration.
17
Integrated M2M Terminals
Introduction Vodafone MachineLink
3G v1.0
C3 confidentiality classification
For more information
For more information on VPN setup, a whitepaper is available on the NetComm
Wireless website at http://vodafone.netcommwireless.com
18
Integrated M2M Terminals
Introduction Vodafone MachineLink
3G v1.0
C3 confidentiality classification