[ Contents | Post | Reply | Next | Previous | Up ]
From: Lyle Sharp
Category: Security
Date: 12 Oct 2005
Time: 19:00:58 -0400
Remote Name: 24.182.111.42
Many of our clients have asked to establish VPNs but don't know if they need one, or how to implement one inexpensively. A VPN is an encrypted virutal connection between networks that uses the Internet to carry information. It allows you to run most client/server or local communication type operations as if remote sites were on a local area network. VPNs are generally not easy to establish and require at least one site to maintain a static Internet address or dynamic domain name service account. They also require roughly double the minimum bandwidth necessary for similar operations on a local area network. This all means that VPNs are not generally inexpensive, but cost less than a traditional leased line. You would only need a VPN if you had a need to run software services and clients designed for a local area network without encryption. Multiple sites can be linked to your VPN and allowed to access sensitive materials/processes without fear of data theft or interception. In many cases, VPN technology is not necessary and can be replaced with encrypted services designed for Internet use such as secure web servers and encrypted terminal services. As an example, one of my clients wanted to implement a VPN to enable remote assistance for her agents. With 8 sites and very limited bandwidth, a VPN based solution doesn't seem to be a best fit. In this case, a simple multi-user account with www.gotomypc.com seems a much easier, secure solution that meets the needs. Another client had custom accounting software that runs on a Sybase server. They had a need to connect accounting agents at remote sites to the database. In this case, a Winframe or terminal services solution would be the only reasonable alternative to a VPN, but the VPN makes best use of existing resources at a lower total cost. This client's VPN has been running problem free for 30 days now using a low cost hardware solution and one static Internet address. The question of when to use a VPN can only be answered based on need. Security of communications between sites is a need by itself and a VPN was designed specifically for that need. Specifc goals may still be accomplished securely without a VPN. Cost will determine whether a VPN or some other method will work best for your need.