As the numbers of remote branches and work-from-home employees grows throughout corporate America- and worldwide- VPNs are becoming essential to both Enterprise networks and Service providers. IPSec is one of the more popular technologies for deploying IP based VPNs. IPSec VPN Design provides a solid understanding of design and architectural issues of IPSec VPNs. Some books cover IPSec protocols- but they do not address overall design issues. This book fills that void.

IPSec VPN Design consists of three main sections. The first section provides a comprehensive introduction to the IPSec protocol- including IPSec Peer Models. This section also includes an introduction to site-to-site- network-based- and remote access VPNs. The second section is dedicated to an analysis of IPSec VPN architecture and proper design methodologies. Peer relationships and fault tolerance models and architectures are examined in detail. Part three addresses enabling VPN services- such as performance- scalability- packet processing- QoS- multicast- and security.

This title also gives exposure to integration of IPSec VPNs with other Layer 3 (MPLS VPN) and Layer 2 (Frame Relay- ATM) technologies. Management- provisioning- and troubleshooting techniques are also be discussed. Case studies highlight design- implementation- and management advice to be applied in both service provider and enterprise environments.

Overview of the Book:

• Learn about IPSec protocols and Cisco IOS IPSec packet processing.
• Understand the differences between IPSec tunnel mode and transport mode.
• Evaluate the IPSec features that improve VPN scalability and fault tolerance- such as dead peer detection and control plane keep alives.
• Overcome the challenges of working with NAT and PMTUD.
• Explore IPSec remote-access features- including extended authentication- mode-configuration- and digital certificates
• Examine the pros and cons of various IPSec connection models such as native IPSec- GRE- and remote access.
• Apply fault tolerance methods to IPSec VPN designs.
• Employ mechanisms to alleviate the configuration complexity of a large- scale IPSec VPN- including Tunnel End-Point Discovery (TED) and Dynamic Multipoint VPNs (DMVPN).
• Add services to IPSec VPNs- including voice and multicast.
• Understand how network-based VPNs operate and how to integrate IPSec VPNs with MPLS VPNs.

Here are the contents of this book.

Authors: Vijay Bollapragada- Mohamed Khalid- Scott Wainner
Publisher: CISO Press
ISBN 10:1587051117
ISBN 13: 9781587051111
Pages: 384 
Format: Soft Cover
Published Date: Apr 2005
Availability: Ex Stock

Related Products

	Enterprise Security Architecture: A Business-Driven Approach (SABSA®)		$69.95 USD
	Network Security Architectures		$65.00 USD