Textbook Notes (270,000)
CA (160,000)
Ryerson (10,000)
ITM (800)
ITM 315 (20)
Chapter 10

ITM 315 Chapter Notes - Chapter 10: Layer 2 Tunneling Protocol, Encryption, Extensible Authentication Protocol


Department
Information Technology Management
Course Code
ITM 315
Professor
Karim Mourad
Chapter
10

This preview shows page 1. to view the full 5 pages of the document.
ITM315 – Chapter 10: Configuring Remote Access
Remote Access:
a) Routing and Remote Access Services (RRAS): Enable routing and remote access
through virtual private networking and dialup networking
b) Virtual Private Network (VPN): Tunnel through a larger network that is restricted to
designated member clients only
c) Dial-Up Networking: Using a telecommunications line and a modem to dial into a
network or specific computers on a network
d) Modem (Modulator/Demodulator): Converts transmitted digital signal to an analog
signal for a telephone line and converts an analog signal to a digital signal for the
computer.
e) RRAS: Turns server into a dialup Remote Access Services server to handle many
connections at once
Implementing a VPN:
a) VPN: Uses LAN and tunneling protocols and encapsulates data when sent across a public
network.
b) Benefits: Can be connected through local ISP to local network, Ensure data is secure on
public network by using encrypted tunnel
Using Remote Access Protocols
a) Function of Remote Access Protocol: Encapsulate a packet and uses TCP/IP to transport
over a WAN.
b) Serial Line Internet Protocol (SLIP): Provides point-to-point communication using
TCP/IP. Doesn’t support Network connection authentication
c) Compressed Serial Line Internet Protocol (CSLIP): Compresses header information in
each packet. Doesn’t support Network connection authentication
d) Point-to-Point Protocol (PPP): Has more capability than SLIP
Remote Access Protocols
a) Point-to-Point Tunneling Protocol (PPPT): Offers PPP-based authentication
techniques. Encrypts data carried by PPTP through using Microsoft Point-to-Point
Encryption
Microsoft Point-to-Point Encryption (MPPE): Starting-to-ending-point
encryption technique that uses special encryption keys varying in length from 40
to 128 bits
b) Layer Two Tunneling Protocol (L2TP): Works similarly to PPTP
IP Security (IPsec): IP-based secure communications and encryption standards
created through the Internet Engineering Task Force
c) Secure Socket Tunneling Protocol (SSTP): Employs PPP authentication techniques.
Encapsulates data packet in the Hypertext Transfer Protocol (HTTP)
Secure Sockets Layer (SSL): Data encryption technique employed between a
server and a client
PPP, PPTP, and L2TP are available in: Windows 2000, XP, Vista, Windows 7, Windows
2000/2003/2008 Server
SSTP is available in: Windows Server 2008, Windows Vista, Windows 7
You're Reading a Preview

Unlock to view full version

Only page 1 are available for preview. Some parts have been intentionally blurred.

Types of Communication Technology for Remote Access Server:
a) Asynchronous Modem: Communication occurs in discrete units.
b) DSL: Uses telephone lines for high-speed networking.
c) Frame Relay: WAN communication that uses packet switching and virtual connection
d) Synchronous Modem: Communicates with bursts of data at a given time.
e) T-Carrier: Telephone line that can be used for data communications over multiple
channels.
f) Dialup, Telecommunication Lines, X.25 Lines, Cable Modems
Configuring a VPN Server
a) Install Network Policy and Access Services role
b) Configure Server 2008 server as a networks VPN server
c) Configure a VPN server as a DHCP Relay Agent for TCP/IP communications
d) Configure the VPN server properties
e) Configure a remote access policy for security
f) Server 2008 requires at least two network interfaces: One for LAN and VPN
g) Routing & Remote Access Options: Dial-Up, VPN, NAT, Secure Connection or Custom
Configuring a DHCP Relay Agent:
a) DHCP Relay Agent: Broadcasts IP configuration information
Use Routing and Remote Access tool to configure VPN server as a DHCP Relay
Agent
Configuring VPN Properties:
a) General: Enables server as a router or remote access server. Set up as IPv4 router and
remote access server.
b) Security: Enables authentication protocols on the RAS server or enables unauthenticated
access.
c) IPv4: Enables IPv4 forwarding, can change how IP addresses are assigned (DHCP or
address pool)
d) IPv6: Enables IPv6 forwarding and the IPv6 prefix.
e) PPP: Allows for multilink, turns many incoming lines to one logical connection.
f) Logging: PPP logging logs specific events.
Configuring Multilink and Bandwidth Allocation Protocol:
a) Multilink: Combine or aggregate two or more communications channels so they appear
as one large channel. Older technology compared to DSL or wireless area network.
Aggregated Links: Multilink must be implemented in the client as well as in the
server
b) Bandwidth Allocation Protocol (BAP): Ensure that a client’s connection has enough
speed or bandwidth for a particular application
2008 version of Multilink PPP supports Bandwidth Allocation Control
Protocol (Selects a preferred client when two or more clients vie for the same
bandwidth)
You're Reading a Preview

Unlock to view full version