 |
 InfoTeCS
Software
VPN Software:
ViPNet
CUSTOM
ViPNet
OFFICE
ViPNet
TUNNEL
ViPNet MVS
Software de encripción:
ViPNet Safe Disk
ViPNet Safe Disk Mobile
ViPNet
DISCguise
Firewall Corporativo:
ViPNet Office Firewall
Generador de contraseña
ViPNet Password
 Roulette
Ejemplos de aplicación:
Liberaciones seguras e Impresión remota
Administración remota segura y Mantenimiento
Aplicación de ViPNet para abogados, asesores de impuestos, notarios y servicios de salud
|
|
VPN soluciones
VPN Soluciones
Realice su IP VPN en minutos, basado en la tecnología ViPNet
|
| |
|
|
| |
|
Local area network administrators face the data protection challenge more frequently day after day. This is extremely important with networks that operate with valuable information that requires additional protection. Those include governmental and medical facilities, enterprises involved in manufacturing certain products, and other organizations that may suffer significant financial loss if their confidential data is disclosed. This issue becomes especially important when the local area networks are required to be accessible from the global network, when the networks must accept connections from mobile users or remote office employees, or when the local area network users must have access to the global network and exchange data through it.
 |
Making IP VPN based on ViPNet technology in minutes
A solution to this problem may be in creating Virtual Private Networks - VPN. Special software is required for creating virtual private networks; one of such software is offered by INFOTECS. Their solution is promoted under the trademark of ViPNet (to be precise, there are two solutions - ViPNet OFFICE and ViPNet CUSTOM). The difference between them is in the second solution's capabilities to create custom networks of any scale. Let's first get ourselves acquainted with the differences and then review the VPN creation principles. The ViPNet CUSTOM solution utilizes ViPNet Administrator as its basic software; the other solution uses ViPNet Manager for that purpose. ViPNet Manager is the light version of the ViPNet Administrator software that provides simple, intuitive means for setting and modifying a protected ViPNet network structure.
The both solutions are capable of working with EDS (Electronic Digital Signature). For the cryptographic core, the ViPNet software utilizes ViPNet-E. The cryptographic core realizes the following encryption algorithms: AES (256-bit), GOST (256-bit), 3DES (168-bit), and DES (56-bit). The default algorithm is AES (256-bit); user can freely select the other algorithms. The key length for the asymmetric encryption system (public and private keys) is 1024 bits.
The ViPNet OFFICE software is installed over the existing physical network, and it does not worsen its performance. The system protects the network from attacks originating in both external and local area networks. The core of the ViPNet is the so-called ViPNet-driver, which mainly filters and encrypts / decrypts outgoing / incoming IP packets. The ViPNet-driver is a network driver that operates over the second level of the OSI model; that allows processing packets (decrypt, check integrity, filter, and block them) before they are passed to the transport level. ViPNet modules process all of the company's TCP/IP traffic encrypting and decrypting it, checking its integrity, and filtering it according to the applicable security policy. This results in making a connection between any computer with a ViPNet module (located in either an external network or in an internal protected segment) with another ViPNet computer an encrypted link (tunnel), and it is therefore isolated from the external connections.
Additionally, the ViPNet module provides an extensive collection of security tools, including without limitations, filtering unencrypted and recently decrypted traffic according to the applicable security policy. The ViPNet technology is compatible with any network access technology, including xDSL, ISDN, GPRS, UMTS, WiFi, etc.
It takes a number of steps to create a VPN. The first program to be installed on the network is ViPNet Manager. It serves for configuring the ViPNet network and creating key information (key distribution kits and user passwords) required for setting up and running the ViPNet network's hosts. During the program's initial startup, it runs the "ViPNet IP VPN Wizard". At this point, the network structure, all users' key distribution kits and password data is created. The next step is setting up links between the network's hosts. The following three options are available here:
Link all network nodes (all the nodes will be linked with each other).
Link each coordinator's VPN hosts - each coordinator's VPN hosts will only have links to their coordinator and their coordinator's VPN hosts, while all coordinators will have links between each other.
Link each VPN host with its coordinator - each VPN host will only have links with its coordinator, while all coordinators will have links between each other.
Once created, the structure and the links alike can be edited, users can be moved from one coordinator to another; at the same time, you should keep in mind that the number of coordinators cannot exceeding the number of licenses purchased. Computers with the ViPNet software installed (Coordinator, Client) become a part of a protected virtual network, which means that the information each computer exchanges with other computers becomes unavailable (protected) for any other computer that is not a part of this connection. On the other hand, information located on the original computer is not available from any computer that is not a part of the VPN. Access from computers being a part of the VPN is regulated by availability of the required links, keys, filter settings, and it is under complete control.
Once ViPNet Manager is installed and the network structure is configured, ViPNet Coordinator may be installed. As a rule, a computer with this system is set at the edges of local area networks and their segments; that computer provides:
Inclusion of public and protected computers within those networks and segments of the VPN, regardless to the address types allocated for them.
Splitting and protecting networks from network attacks and notifying the ViPNet network computer of status of other hosts linked to it.
This system also provides protection for computers, on which, for one reason or the other, the client part cannot be installed. For such computers, ViPNet Coordinator can create a protected tunnel to a similar ViPNet Coordinator or to the target computer - in order to protect traffic.
ViPNet Coordinator, within an IP VPN boundary, can carry various loads and perform various functions:
Messages transfer server function that provides routing of mail envelopes and control-messages during interaction of network objects between one another.
IP address server function that provides registering and providing data on current IP addresses and methods of connection of corporate network's objects.
ViPNet-Firewall server that allows protected computers within the local area network to operate in the VPN on behalf of the same address.
Operation of protected computers within the local area network via other firewalls.
Tunneling packets to a protected link from specified unprotected computers' addresses; filtering public packets, including those being tunneled, according to the applicable security policy (the firewall functions).
ViPNet public Internet server function that organizes a secure connection of a part of the local area network computers to the Internet without physically disconnecting them from organization's local area network.
ViPNet Coordinator provides several operating modes for working with public resources - from allowing those to complete denial of them. One of the program's important features is interception and filtration (allowing or blocking) of any public IP packets passing through each of its network interfaces. To protect a computer from unauthorized attempts of applications running on that computer to carry out a network operation, the program carries the application-activity monitoring feature. It has a built-in intrusion detection system (IDS). It detects and prevents the trespasser's (hacker or intruder) actions that may lead to intrusion inside the system or abusing it. (The last two functions are also included in ViPNet Client).
ViPNet Coordinator registers all kinds of information on its operation on the computer. That information can be viewed via the program's interface. You can also see the list of allowed or blocked IP packets, blocked addresses, events, and attacks.
ViPNet Coordinator and Client include additional modules that provide secure transport envelope exchange (files, messages, e-mail) between the protected network's clients. The basic transport module is called MFTP, and it is purposed for ensuring reliable and secure transfer of transport envelopes between the ViPNet network hosts through the TCP protocols (the MFTP transmission channel) and SMTP/POP3. During connection via the MFTP channel, a TCP connection with the envelope-receiving host is established; the hosts authenticate one another and then exchange envelopes for one another. During connection via SMTP/POP3, the transport module forwards the envelopes to be sent to the MailTrans module, which sends them via the SMTP server and also retrieves envelopes addressed to that host via the POP3 server.
The transport envelopes to be transmitted are generated by network applications, for instance, ViPNet Business mail. This system is designed for secure transmission of electronic documents via public communication links through the entire document route - from the sender to the recipient within the ViPNet network. Besides the basic e-mail processing functions, ViPNet Business mail encrypts and signs outgoing messages with EDS, maintaining their registration data, and provides flexible document processing features: document sorting, archiving, search, automatic file and incoming message processing according to various user-defined rules (autoprocessing).
The only thing left to be said is, the workstations get the ViPNet Client software, which mainly repeats the ViPNet Coordinator functions, except for those related to address conversion, establishing data links between registered on the ViPNet Coordinator, group management, protection from intrusions from external networks, and some other functions.
Deployment of the ViPNet OFFICE system will let create a protected virtual network, solve many issues on protecting both the network and data circulating in it. This solution has been tested in many organizations, and it has shown it excellent.
Read the
ViPNet OFFICE Review at
CNET.com &
bestsoftware4download.com
 
|
|
|
| | |
