vodafone machinelink 4g vpn functionality feature...
TRANSCRIPT
C3 confidentiality classificationIntegrated M2M TerminalsIntroduction Vodafone MachineLink4G v1.1
1
Vodafone MachineLink 4G
VPN functionalityFeature Spotlight
C3 confidentiality classificationIntegrated M2M TerminalsIntroduction Vodafone MachineLink4G v1.1
2
What is the VPN function of the MachineLink 4G?
A virtual private network (VPN) is a secure connection between two or more endpoints on a network.
There are two types of VPN scenarios:• Site to site VPN where data is encrypted from one VPN gateway to another over a third party network such as the internet
• Remote Access VPN where a secure connection is established between an individual computer and a VPN gateway.
The MachineLink 4G router supports the following VPN protocols:
• IPSec• OpenVPN• PPTP• GRE
C3 confidentiality classificationIntegrated M2M TerminalsIntroduction Vodafone MachineLink4G v1.1
3
IPSecIPSec is a VPN protocol operating at the internet protocol (IP) layer of the internet protocol suite.
It can be used to secure data flow in the following configurations:• Host-to-host• Network-to-network• Network-to-host
OpenVPNOpenVPN is an open source virtual private network program for creating point-to-point or server-to-multi-client encrypted tunnels between host computers.
It can traverse network address translation (NAT) and firewalls and provides 3 methods of authentication:
• Certificate• Pre-shared key• Username/password
C3 confidentiality classificationIntegrated M2M TerminalsIntroduction Vodafone MachineLink4G v1.1
4
PPTP-Client
GRE
The Point-to-Point Tunnelling Protocol (PPTP) is a method for implementing virtual private networks using a TCP and GRE tunnel to encapsulate PPP packets. PPTP operates on Layer 2 of the OSI model and is included on Windows computers.
The Generic Route Encapsulation (GRE) protocol is used in addition to Point-to-Point Tunnelling Protocol (PPTP) to create VPNs (virtual private networks) between clients and servers or between clients only. Once a PPTP control session establishes the VPN tunnel GRE is used to encapsulate the data or payload.
C3 confidentiality classificationIntegrated M2M TerminalsIntroduction Vodafone MachineLink4G v1.1
5
What can you do with VPNs?With respect to the MachineLink 4G router, the benefits of using a VPN include:
• Security – All traffic in and out of the router is encrypted (except when using GRE) ensuring the integrity of your network.
• Common network – the devices can be placed in the same subnet meaning that they can be more easily administered.
• Anonymity – because the router is connecting to a VPN gateway, any remote connections it may make appear to come from the gateway.
• Reduce maintenance costs and time – when you have multiple routers on the same network, you can save time and money by reducing the effort required to service them.
C3 confidentiality classificationIntegrated M2M TerminalsIntroduction Vodafone MachineLink4G v1.1
6
How to configure IPSec
C3 confidentiality classificationIntegrated M2M TerminalsIntroduction Vodafone MachineLink4G v1.1
7
How to configure IPSec (continued)
Select encapsulation, encryption and hash types
C3 confidentiality classificationIntegrated M2M TerminalsIntroduction Vodafone MachineLink4G v1.1
8
How to configure IPSec (continued)
Enter Dead peer detection keep alive time and timeout, re-key interval, SA life time and then select the key mode.
C3 confidentiality classificationIntegrated M2M TerminalsIntroduction Vodafone MachineLink4G v1.1
9
How to configure OpenVPN server
C3 confidentiality classificationIntegrated M2M TerminalsIntroduction Vodafone MachineLink4G v1.1
10
How to configure OpenVPN serverEnter the server details. All fields are required.
When all fields have been completed, click Generate CA certificate button
C3 confidentiality classificationIntegrated M2M TerminalsIntroduction Vodafone MachineLink4G v1.1
11
How to configure OpenVPN serverIf using certificate authentication, enter the details for at least one certificate and click Generate.
After its generated, you can use the Download button to download the certificate file.
Certificates may be revoked in the future if they are no longer necessary or security has been compromised.
Enter the remote network address and network mask if you know them.
C3 confidentiality classificationIntegrated M2M TerminalsIntroduction Vodafone MachineLink4G v1.1
12
How to configure OpenVPN client
To use certificate authentication, scroll to the bottom of the screen and use this section to upload the certificate first.
C3 confidentiality classificationIntegrated M2M TerminalsIntroduction Vodafone MachineLink4G v1.1
13
How to configure OpenVPN client (continued)
Select uploaded certificate from drop down list.
Certificate information is displayed.
C3 confidentiality classificationIntegrated M2M TerminalsIntroduction Vodafone MachineLink4G v1.1
14
How to configure OpenVPN P2P
C3 confidentiality classificationIntegrated M2M TerminalsIntroduction Vodafone MachineLink4G v1.1
15
How to configure OpenVPN P2P (continued)
Enter the IP address and subnet mask of the remote network
On both server and client sides, click the Generate button to create a secret key to be shared with the other router.
Use the Client secret key upload field to upload the secret key file from the other router.
C3 confidentiality classificationIntegrated M2M TerminalsIntroduction Vodafone MachineLink4G v1.1
16
How to configure the PPTP client
C3 confidentiality classificationIntegrated M2M TerminalsIntroduction Vodafone MachineLink4G v1.1
17
How to configure the PPTP client (continued)
Click Save to complete the configuration.
C3 confidentiality classificationIntegrated M2M TerminalsIntroduction Vodafone MachineLink4G v1.1
18
For more informationFor more information on VPN setup, a whitepaper is available on the NetCommWireless website at http://vodafone.netcommwireless.com