Lab 7 Discussion Virtual Private Network (VPN)
1y ago
22 Views
1 Downloads
864.69 KB
11 Pages
Report/dmca
Download PDF

Transcription

System Administration & SecurityìCOMP 175 Fall 2021 University of the Pacific Jeff ShaferLab 7 DiscussionVirtual Private Network(VPN)

2Lab 7 - VPNObjectivesì VPN allowing for remoteaccess into the VPC subnetSystem Administration & SecurityDiscussionì VPN basicsFall 2021

3Virtual Private Network (VPN)ì Encrypted link between (your device / your network)and (another device / another network)ì Extends a private network across a public networkì Enables users to send and receive data across publicnetworks as if their computing devices were directlyconnected to the private networkì Motivations for home usersì Access corporate systems when working at homeì Security(?)ì Is your ISP monetizing your behavior?(Or is the VPN vendor?)ìSystem Administration & SecurityBypass region locks on streaming contentFall 2021

4Example Use 1Remote Access to Corporate NetworkSystem Administration & SecurityFall 2021

5Example Use 2- Third Party VPN ServerSystem Administration & SecurityFall 2021

6Example Use 3 - Site-to-Site VPNSystem Administration & SecurityFall 2021

7Example Use Case 4Corporate Data Center - Cloud ProviderSystem Administration & SecurityFall 2021

8WireGuard VPNSystem Administration & SecurityìFall 2021

9WireGuard VPN - Design Goalsì Simple Setupì Public & Private Keys for authentication (Similar to SSH)ì Strong cryptographyì Minimal attack surfaceì Codebase is small compared to IPsec (600k lines of code)or OpenVPN (400k lines of code)ì 4000 lines of kernel code - Easier to auditìHigh performanceììSystem Administration & SecurityIntegrated into Linux kernel (v5.6, March 2020)Windows kernel driver (August 2021)Fall 2021

10WireGuard VPNVPN Subnet172.31.255.0/24(Virtual network in WireGuard,not physical network)VPN Serverwg0 interface172.31.255.254System Administration & Security SubnetTiger-VPC-Public10.101.0.0/24 Web Server(internal access only)Fall 2021

11Wrap-UpìQuestions?ìConcerns?System Administration & Securityì TodayìLab 6 – Web Server (Part 3)ìLab 7 – VPNFall 2021

WireGuardVPN -Design Goals ìSimple Setup ì Public & Private Keys for authentication (Similar to SSH) ìStrong cryptography ìMinimal attack surface ì Codebase is small compared to IPsec (600k lines of code) or OpenVPN (400k lines of code) ì 4000 lines of kernel code -Easier to audit ì High performance ì Integrated into Linux kernel (v5.6, March 2020) ì Windows kernel driver (August 2021)

Related Books

Ccna routing and switching lab manual pdf free

Ccna routing and switching lab manual pdf free

Spring 2009 Quantum Mechanics Lab - Wisconsin Lutheran College

Spring 2009 Quantum Mechanics Lab - Wisconsin Lutheran College

Introduction to Cell & Molecular Biology Lab (BIOL111L .

Introduction to Cell & Molecular Biology Lab (BIOL111L .

MEDICAL IMMUNOLOGY LAB - Department of Microbiology

MEDICAL IMMUNOLOGY LAB - Department of Microbiology

A GLIMPSE - National Institute of Technology, Tiruchirappalli

A GLIMPSE - National Institute of Technology, Tiruchirappalli

Astronomy Lab - Lab Notebook and Scaling - MCTCteach

Astronomy Lab - Lab Notebook and Scaling - MCTCteach

CCNP Security SECURE Notes - 13Cubed

CCNP Security SECURE Notes - 13Cubed

Physical Metallurgy Lab - IIT K

Physical Metallurgy Lab - IIT K

LAB MANUAL FOR CCNA - Certexams

LAB MANUAL FOR CCNA - Certexams

Summer 2021 Session 2

Summer 2021 Session 2

PHYSICS 124 Maxwellian Synthesis Spring 2012

PHYSICS 124 Maxwellian Synthesis Spring 2012

Lab 8: Active Filters for Instrumentation Amplifier

Lab 8: Active Filters for Instrumentation Amplifier

PopularTags

Recent Views