?
Solved

Digging into VPN. How ISP determines that it's Remote access VPN traffic?

Posted on 2015-02-14
6
Medium Priority
?
111 Views
Last Modified: 2015-02-14
How ISP determines that it's Remote Access VPN traffic?
What about network protocols which are used for VPN?
What about roles of switches on VPN.
0
Comment
Question by:Nusrat Nuriyev
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
6 Comments
 
LVL 97

Assisted Solution

by:Experienced Member
Experienced Member earned 2000 total points
ID: 40609786
Simply, VPN passes TCP/IP packets that are encrypted. So the same rules apply at each end with regard to packets. The encryption is only in the tunnel.

Switches pass traffic at each end in a normal fashion.

I am not sure what an ISP knows about VPN. Generally VPN is independent of ISP, except that ISP's (and Hotels and like) can determine that VPN is being used (not see what is inside) and upcharge for it.

The VPN packets have header bytes that will say it is VPN and some of the characteristics of the overall packet.
0
 

Author Comment

by:Nusrat Nuriyev
ID: 40609987
Wait, you mean switch or routers?
Or the VPN scheme virtually may be like this?
office_1 <switch/router> ISP_1 <-> internet <-> ISP_2 <switch/router> office_2
Could you please explain what does mean tunnel?
0
 
LVL 97

Assisted Solution

by:Experienced Member
Experienced Member earned 2000 total points
ID: 40609988
VPN forms an encrypted tunnel inside the middle internet portion . That is done to secure the data. The encapsulation is called a tunnel.
0
Ransomware Attacks Keeping You Up at Night?

Will your organization be ransomware's next victim?  The good news is that these attacks are predicable and therefore preventable. Learn more about how you can  stop a ransomware attacks before encryption takes place with our Ransomware Prevention Kit!

 

Author Comment

by:Nusrat Nuriyev
ID: 40609996
So, up to ISP, it goes unencrypted? But how the ISP network equipment determine that it must be encrypted after it?

Does VPN technology form new packet and put the original TCP packet inside of the payload of new packet with new header?  Does VPN make an envelope with encrypted content on top of TCP packet?

Could we say that VPN is an just ecnrypts connection  and affects to all protocols on computers on both sides, comparing with HTTPS which secures only HTTP?
0
 
LVL 97

Accepted Solution

by:
Experienced Member earned 2000 total points
ID: 40610035
how the ISP network equipment determine that it must be encrypted after it?

The ISP has nothing to do with the encryption, encapsulation, or tunnel. That is up to the VPN (Virtual Private Network) hardware or software on each end.

Does VPN technology form new packet and put the original TCP packet inside <-- More or less, yes. and that is what isolates from the ISP.

VPN is not HTTPS at all. Apples and oranges.

The VPN encrypts at one end and unencrypts at the other end. The overall traffic is just TCP/IP.
0
 
LVL 97

Expert Comment

by:Experienced Member
ID: 40610064
@Nusrat Nuriyev  - Thank you and I was happy to help. VPN (in the detail) is complicated. Good luck with your learning about it.
0

Featured Post

Free Backup Tool for VMware and Hyper-V

Restore full virtual machine or individual guest files from 19 common file systems directly from the backup file. Schedule VM backups with PowerShell scripts. Set desired time, lean back and let the script to notify you via email upon completion.  

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Juniper VPN devices are a popular alternative to using Cisco products. Last year I needed to set up an international site-to-site VPN over the Internet, but the client had high security requirements -- FIPS 140. What and Why of FIPS 140 Federa…
We recently endured a series of broadcast storms that caused our ISP to shut us down for brief periods of time. After going through a multitude of tests, we determined that the issue was related to Intel NIC drivers on some new HP desktop computers …
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…
Suggested Courses

800 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question