21 Sustekova D.

Analele Universitii Constantin Brncui din Trgu Jiu, Seria Inginerie, Nr. 2/2009

Annals of the Constantin Brancusi University of Targu Jiu, Engineering Series , No. 2/2009 223

REALIZAREA DE REELE VIRTUALE PRIVATE PENTRU

CRETEREA EFICIENT I CONCURENA COMPANIILOR

ustekov D.,

ilinsk univerzita, ilina, SLOVACIA

ABSTRACT: In acest articol este descris un concept de baz Reele Virtuale Private (VPN) i motivele pentru realizarea acestor reele pentru firme i companii. Sunt descrise exemple ale realizrilor din Slovacia i beneficii ale realizrii de Reele Virtuale Private. Cuvinte cheie: reea virtual privat (VPN), Innternet, acces la distan

1. INTRODUCERE

Lumea s-a schimbat foarte foarte mult n ultimele decenii. n loc s se confrunte cu probleme locale sau regionale, multe afaceri trebuie s se gndeasc acum la pieele globale i la logistic. Multe companii au faciliti n ntreaga ar sau n lume i mai este un singur lucru de care au nevoie: o modalitate de a menine comunicaiile rapide, sigure i fiabile oriunde s-ar afla sediile lor.

VIRTUAL PRIVATE NETWORK BUILDING FOR THE EFECTIVE

INCREASING AND THE COMPETITIVENESS OF THE

COMPANIES

ustekov D., ilinsk univerzita, ilina, SLOVAKIA

ABSTRACT: In this article there is described a basic concept of the Virtual Private Network (VPN) and reasons for building of these nets for firms and companies. There are described examples of realizations in Slovakia and benefits of Virtual private Networks building.

Keywords: Virtual Private Network (VPN), Internet, remote access

1. INTRODUCTION

The world has changed a lot in the last couple of decades. Instead of simply dealing with local or regional concerns, many businesses now have to think about global markets and logistics. Many companies have facilities spread out across the country or around the world, and there is one thing that all of them need: A way to maintain fast, secure and reliable communications wherever their offices are.

Figura 1: Multe companii au puncte de lucru n toat lumea

Figure 1: Many companies have facilities around the world.



2. DE CE S CONSTRUIM REELE VIRTUALE PRIVATE

Pn recent, acest lucru a nsemnat folosirea de linii nchiriate pentru a menine o reea extins de calculatoare (WAN). Reeaua WAN avea avantaje evidente ntr-o reea public precum Internetul cnd era vorba de siguran, performan i securitate. Dar meninerea unei reele WAN, n special cnd se folosesc linii nchiriate, poate deveni destul de costisitoare i adesea mrete costurile pe msur ce crete distana dintre birouri. Pe msur ce popularitatea Internetului a crescut, afacerile s-au ntors ctre ea ca o modalitate de a-i extinde propriile reele. Prima dat au fost intranet-urile care sunt site-uri protejate cu parol realizate pentru a fi folosite numai de angajaii companiei. Acum, multe companii i creeaz propria lor VPN (reea virtual privat) pentru a rspunde nevoilor angajailor i birourilor la distan. 3. CE SUNT REELELE VIRTUALE

PRIVATE

De fapt, VPN este o reea privat care folosete o reea public (de obicei Internet) pentru a conecta zonele ndeprtate i utilizatorii. n loc s foloseasc o conexiune dedicat cu lumea real cum ar fi o linie nchiriat, reeaua VPN folosete conexiuni virtuale prin Internet de la reeua privat a companiei la zona ndeprtat sau la angajat [Fig. 2].

2. WHY TO BUILD VIRTUAL PRIVATE NETWORKS

Until fairly recently, this has meant the use of leased lines to maintain a wide area network (WAN). A WAN had obvious advantages over a public network like the Internet when it came to reliability, performance and security. But maintaining a WAN, particularly when using leased lines, can become quite expensive and often rises in cost as the distance between the offices increases. As the popularity of the Internet grew, businesses turned to it as a means of extending their own networks. First came intranets, which are password-protected sites designed for use only by company employees. Now, many companies are creating their own VPN (virtual private network) to accommodate the needs of remote employees and distant offices. 3. WHAT VIRTUAL PRIVATE NETWORKS ARE

Basically, a VPN is a private network that uses a public network (usually the Internet) to connect remote sites or users together. Instead of using a dedicated, real-world connection such as leased line, a VPN uses "virtual" connections routed through the Internet from the company's private network to the remote site or employee [Fig. 2].



Figura 2. Conexiunea laVPN Figure 2. VPN connection

O reea VPN bine realizat ar trebui s includ: - Securitate - Fiabilitate - Scalabilitate - Administrarea reelei - Administrarea politicii

4. TIPURI DE VPN 4.1. VPN cu acces la distan [Fig. 3]

Reeaua VPN cu acces la distan este un serviciu VPN foarte frecven pe care l putei instala n reeaua de la birou sau de acas. Poate fi implementat prin instalarea unui portal VPN sau a unui server i v putei conecta folosind clientul VPN din alte locaii.

A well-designed VPN should incorporate: - Security - Reliability - Scalability - Network management - Policy management 4. TYPES OF VPN 4.1. Remote Access VPN [Fig. 3]

Remote access VPN is very common VPN service that you can set up in your office or home network. It can be implemented by setting up a VPN gateway or server and you can connect to it by using VPN client from other locations.

Figura3. Reeaua VPN cu acces la distan Figure3. Remote access VPN 4.2. Reea VPN de o parte si de alta Este o conexiune VPN stabilit ntre 2 portaluri VPN care se afl n 2 reele diferite

4.2. Site-to-site VPN Is the VPN connection established between 2 VPN gateways that reside in 2 different



pe Internet, astfel nct calculatoarele ambelor reele pot schimba date n mod sigur. Nu este nevoie de un client VPN pe calculatoarele utilizatorului. Conexiunea VPN se va stabili ntre ambele portaluri VPN. Ambele portaluri VPN vor codifica i decodifica datele de comunicaii pentru a asigura securitatea i integritatea datelor [Fig. 4].

networks over the Internet, so that both networks computers can exchange data securely. There is no VPN client needed on user computers. The VPN connection will be established between both VPN gateways. Both VPN gateways will encrypt and decrypt the communication data to ensure the security and integrity of data [Fig. 4].

Figura 4. Reea VPN de o parte i de alta Figure 4. Side-to-side VPN 4.3. Reea VPN punct-la-punct O alt reea VPN este reeaua VPN punct-la-punct. Pe scurt, dou sau mai multe reele sunt conectate folosind o linie dedicat de la ISP. Exist de obicei dou T1, Metro Ethernet, sau linii OC. Principala caracteristic a utilizrii unei linii nchiriate este c este o conexiune punct-la-punct bazat pe circuit. Nu iese pe Internet, deci performana nu este degradat de probleme de routing, laten i congestie extern. 4.4. MPLS VPN-uri MPLS VPN este o familie de metode pentru a utiliza puterea unei Multiprotocol Label Switching (MPLS) pentru crearea Reelelor Virtuale Private (VPN). MPLS este adecvat pentru acest scop deoarece asigur izolarea traficului i diferenierea fr suprancrcare substanial.

4.3. Point-to-Point VPN Another site to site VPN is a point-to-point VPN. Simply put, two or more networks are connected using a dedicated line from an ISP. These are usually T1's, Metro Ethernet, or OC lines. The main strength of using a leased line is that is a circuit-based point-to-point connection. It does not go out over the public Internet, so there performance is not degraded by routing problems, latency, and external congestion. 4.4. MPLS VPNs MPLS VPN is a family of methods for harnessing the power of Multiprotocol Label Switching (MPLS) to create Virtual Private Networks (VPNs). MPLS is well suited to the task as it provides traffic isolation and differentiation without substantial overhead.



5. CONECTAREA ON - LINE A CENTRELOR DE DESFACERE LA O BAZ DE DATE

Declar o soluie flexibil deschis care poate scdea costurile financiare de administrare, crete o activitate n mod eficient i este un instrument solid pentru administrarea activitii de comer. Reelele de calculatoare din Figura 5 cu VPN integreaz ntreaga companie independent la locul de activitate. Centrul integreaz o reea de calculatoare conectat la Internet prin cablu simetric i router Ethernet cu funcionalitate VPN. Exist dou servere n centru serverul cu baza de date (SQL) serverul terminal i server de Schimb. Centrele de desfacere includ reele de tip PC sau PARTENER-LA-PARTENER i sunt conectate la Internet folosind un router cu VPN, server cu baza de date sau server terminal care depind de distana de centru.

5.ON - LINE CONNECTING OF SALE CENTERS TO ONE DATABASE I declare an open flexible solution that can decrease financial costs for administration, increase a work effectively and would make a strong tool for a trade activity management. Computer networks from Figure 5 with VPN integrate the whole company independently on the location of the place of work. Centre integrates computer network connected on Internet by symmetric wire and Ethernet router with VPN functionality. There are two servers in the centre database server (SQL) terminal server and Exchange server. Sale centres include PC or PEER-TO-PEER networks and they are connected on Internet using router with VPN, branches use database server or terminal server depends on the distance from centre.

Figura 5. Conectarea on- line a centrelor de desfacere la baza de date

Figure 5. On - line Connecting of sale centres to one database

Soluia descris permite: Procesarea central a arhivrii bazei de date,

Described solution enables: Central processing of database archiving,



contabilitatea comun i centralizat, livrare i cereri. Monitorizarea unui numr nelimitat de stocuri. Eviden central a tuturor dosarelor. Informaii referitoare la comenzi, fluxul de materiale, legturi i datorii i informaii referitoare la economie. Controlul efectiv al procesului i minimalizarea furnizrii stocului. 6. AVANTAJE ALE VPN

- Extinderea conexiunii geografice - mbuntirea securitii - Reducerea costurilor operaionale versus

WAN tradiionale - Reducerea timpului de tranzit i a

costurilor de transport pentru utilizatorii la distan

- mbuntirea productivitii - Simplificarea topologiei reelei - Asigurarea de oportuniti pentru

reelele globale - Asigurarea de sprijin pentru

telecomutator - Asigurarea compatibilitii cu reelele cu

band larg - Asigurarea unui ROI mai eficient

(profitul investiiei) dect WAN tradiional

7. CONCLUZII La toate companiile, angajaii i partenerii din locaiile la distan au nevoie de acelai acees rapid, fiabil, sigur i cu costuri eficiente la informaiile companiei i la aplicaiile companiei ca i angajaii companiilor de la sedii. VPN este soluia simpl. Ea asigur conexiunea superioar pe care o solicit activitatea, permind angajailor i partenerilor de afaceri s acceseze uor i sigur aplicaiile companiei i s schimbe informaii eseniale ntre filiale, magazine retail i locaii ale partenerilor. BIBLIOGRAFIE 1. Microsoft: Zklady st Training Kit,

common and centralized bookkeeping, supply and demands. Monitoring of an unlimited count of stocks. Central evidence of all the records. Information about orders, material flow, bonds and debts and information about economy. Effective control of process and a minimalizing of a stock supply. 6. BENEFITS OF VPN

- Extend geographic connectivity - Improve security - Reduce operational costs versus

traditional WAN - Reduce transit time and transportation

costs for remote users - Improve productivity - Simplify network topology - Provide global networking opportunities - Provide telecommuter support - Provide broadband networking

compatibility - Provide faster ROI (return on

investment) than traditional WAN

7. CONCLUSIONS In the all companies employees and partners in remote locations need the same fast, reliable, secure and cost-effective access to corporate information and enterprise applications as companies employees at headquarters. VPN is the simple solution. It delivers the superior connectivity the business requires, enabling employees and business partners to easily and securely access enterprise applications and exchange critical information between branches, retail stores and partner locations. REFERENCES 1. Microsoft: Zklady st Training Kit,

Computer Press Brno 1999, ISBN 80-7226-158-4, 806 s.

2. Professional Computing, Magazn pre IT profesionlov, DCD publishing s.r.o, ISSN 1214-5335



Computer Press Brno 1999, ISBN 80-7226-158-4, 806 s. 2. Professional Computing, Magazn pre IT profesionlov, DCD publishing s.r.o, ISSN 1214-5335 3. Pumanov, R.: Virtuln privtn ste = spory a bezpenos, Network Computing, 9/2003, ISSN 1214-3138, str. 23-27. 4. Pumanov, R.: Modern komunikan ste od A do Z, Computer Press Brno 2006, ISBN 80- 5. ustekov D.: Potaov siete a Internet, 1.vyd., vydavatestvo ilinskej univerzity EDIS 2007

3. Pumanov, R.: Virtuln privtn ste = spory a bezpenos, Network Computing, 9/2003, ISSN 1214-3138, str. 23-27.

4. Pumanov, R.: Modern komunikan ste od A do Z, Computer Press Brno 2006, ISBN 80-

5. ustekov D.: Potaov siete a Internet, 1.vyd., vydavatestvo ilinskej univerzity EDIS 2007,

21 Sustekova D.

Documents

Transcript of 21 Sustekova D.