site to site vpn

Toggle sidebar Toggle sidebar
T

TQWorld

Honorable
Dec 4, 2015
17
1
10,515
Hi all,

Need some assistance with a presentation I am building for my team. The team is not comprised of network or security folks but we do need to have a very basic understanding of site-to-site VPN and how it works without getting too granular. This is a very high-level, not overly technical talking piece that needs to be concise and to the point.

If anyone knowledgeable would be so kind as to correct any errors below, it would be greatly appreciated.

Conceptually....

Non Site-to-site traffic
Sending data from a company PC --> broken down into packets --> given routing headers --> router --> DNS --> recepient router --> recipient.

Site-to-Site VPN
Sending data from a company PC --> broken down into packets --> given routing headers --> router --> encapsulated --> encrypted --> recipient VPN server --> decrypted --> encapsulation removed --> router --> recipient.






 
Solution
NocturnalPing
A simple answer is that A site to site VPN encrypts traffic between locations using an existing internet connection and a device with VPN functionality like a router. No need for another internet connection, client software, or extra lines from your ISP.

Site to Site VPN:

Network > VPN Capable Appliance > Internet > VPN Capable Appliance > Remote Network
Sort by date Sort by votes
NocturnalPing

NocturnalPing

Commendable
Jun 8, 2016
65
0
1,660
A simple answer is that A site to site VPN encrypts traffic between locations using an existing internet connection and a device with VPN functionality like a router. No need for another internet connection, client software, or extra lines from your ISP.

Site to Site VPN:

Network > VPN Capable Appliance > Internet > VPN Capable Appliance > Remote Network
 
Upvote 0 Downvote
Solution
NocturnalPing

NocturnalPing

Commendable
Jun 8, 2016
65
0
1,660
If you want to get a little more in depth i can break Site to site VPN communication down like this:

Client sends traffic > Traffic hits VPN gateway > VPN gateway/Appliance Builds a an encrypted tunnel for traffic > Traffic Is encrypted and encapsulated into tunnel > Sent over internet connection > Recieved by corresponding VPN gateway > Strips headers & Decrypt > Deliver to specified host

If you want a really nice description of how communication flows over a network check out the OSI model. Some good stuff.

Hope this helps you and your team! ;D
 
Upvote 0 Downvote
H

humangod

Reputable
Jun 17, 2014
63
0
4,660
Assuming that ESP is selected instead of AH, NocturnalPing has it correct. It should be noted that interesting traffic (traffic that is encrypted within the VPN tunnel) or the clients sending the interesting traffic will not know about any part of the network that is routing the encrypted traffic. I'd actually correct NocturnalPing and use the following:

Network > VPN Capable Appliance > Routing Network > VPN Capable Appliance > Remote Network

Because VPNs can terminate entirely within a private network; not just using the internet.
 
Upvote 0 Downvote
T

TQWorld

Honorable
Dec 4, 2015
17
1
10,515
Thanks for he great responses. I'm not looking for anything too much further in-depth than what I've got in my skeleton layout. It's been a while and I'm a bit rusty and wanted to be sure my flow was accurate.
 
Upvote 0 Downvote
You must log in or register to reply here.

TRENDING THREADS

Latest posts

Moderators online

Share this page

COMPANY
RESOURCES
FOLLOW
Top Bottom