|
VPN - Virtual Private Network:
Is a secure private connection through a public network.
PPTP - Point-to-point tunnelling protocol:
Is an encapsulation protocol based on PPP.
Works at the data link layer and it enables a single point-to-point connection.
Encrypts and encapsulates PPP packets
When negotiating takes place, PPTP cannot encrypt this information because encryption is in the process of being invoked.
Can only work on top of IP networks
L2TP - Layer 2 Tunnelling Protocol:
Can run on top and tunnel through networks that use other protocol
Is not an encryption protocol.
Supports TACACS+ and RADIUS
L2F - Layer 2 Forwarding:
Provides mutual authentication
No encryption
IPSec:
Handles multiple connections at the same time
Provides secure authentication and encryption
Supports only IP networks
Focuses on LAN-to-LAN communication rather than a dial-up protocol
Works at the network layer and provides security on top of IP
Can work in tunnel mode, meaning the payload and header is encrypted or transport mode, meaning that only the payload is encrypted.
PPP - Point-to-Point:
Is used to encapsulate messages and transmit them through an IP network.
PAP - Password Authentication Protocol:
Provides identification and authentication of the user attempting to access a network from the remote system.
CHAP - Challenge Handshake Authentication Protocol:
Is an authentication protocol that uses challenge/response mechanism to authenticate instead of sending a username and password.
EAP - Extensible Authentication Protocol:
Provides a framework to enable many types of authentication techniques to be used during PPP connections.
Network and resource availability
Single point of failure:
If one device goes down, a segment or the entire network is negatively affected.
RAID - Redundant Array of Inexpensive Disks:
A technology used for redundancy and performance improvement that combines several physical disks and aggregates them into logical arrays.
Clustering:
A group of servers that are viewed logically as one server to users and are managed as a single system.
|
|
