1 / 17

Network Connectivity Options

Network Connectivity Options. Currently offered by Wyless. Option 1: Standard, no VPN. Mobile-originate traffic only Outbound traffic can be filtered by white listing IP addresses or ports (such as blocking all traffic except for customer's public-facing server)

yamka
Télécharger la présentation

Network Connectivity Options

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Network Connectivity Options Currently offered by Wyless

  2. Option 1: Standard, no VPN • Mobile-originate traffic only • Outbound traffic can be filtered by white listing IP addresses or ports (such as blocking all traffic except for customer's public-facing server) • Useful when there is no requirement to initiate a session to the cellular device

  3. Option 1: Standard, no VPN

  4. Option 2: PPTP VPN • Requires PPTP client on every host initiating session to the cellular device • Slightly less secure than IPsec VPN • Outbound traffic to internet can be filtered by white listing IP addresses or ports • Typically used for development or testing purposes • PPTP in Porthos account has access to all cellular connections in that account

  5. Option 2: PPTP VPN

  6. Option 3a: Standard IPsec VPN • Only traffic intended directly for customer's LAN goes over the IPsec tunnel • Outbound traffic to internet can be filtered by whitelisting IP addresses or ports • Most popular and easiest type of IPsec to set up

  7. Option 3a: Standard IPsec VPN

  8. Detailed View, Option 3a

  9. Option 3b: Default-Gateway IPsec • All traffic goes through the tunnel to customer LAN • Customer can directly monitor/control cellular traffic out to internet themselves • Avoids customer IP addressing conflicts with Wyless network

  10. Option 3b: Default-Gateway IPsec

  11. Detailed View, Option 3b

  12. Option 3c: GRE over IPsec VPN • Alternative to default-gateway IPsec • GRE allows use of dynamic routing protocols • “Split GRE” configuration can still allow cellular traffic directly to internet

  13. Option 3c: GRE over IPsec VPN

  14. Option 4: MPLS connectivity • alternative to GRE-IPSec • Requires customer provided router(s) and circuit(s) into our datacenter

  15. Option 4: MPLS Connectivity

  16. Option 5: Public Static Addressing • Requires use of very limited public IP addresses • Allows mobile-terminate traffic without VPN • Least secure of any connectivity option • Outbound or inbound traffic can be filtered by whitelisting internet IP addresses or ports • Device is vulnerable to unsolicited bandwidth usage by random internet sources

  17. Option 5: Public Static Addressing

More Related