2 dial-in connections (remote access service) – Lancom Systems LCOS 3.50 User Manual

̈

Chapter 14: Virtual Private Networks—VPN

LANCOM Reference Manual LCOS 3.50

299

V

irt

ua

l Pri

vat

e Ne

two

rks—

VP

N

In practice, LAN-LAN couplings are frequently used between company
headquarters and subsidiaries, or for connections to partner companies.

A VPN-enabled router (VPN gateway) is located at either end of the tunnel.
The configuration of both VPN gateways must be matched to one another.

The connections are transparent for the remaining devices in the local
networks, i.e., they appear to have a direct connection. Only the two
gateways must be configured for the VPN connection.

Internet access in parallel

The Internet access for VPN can be used simultaneously for other Internet
applications, such as web-browsing or e-mail. For security reasons, the
parallel Internet access may be unwanted in some cases. For instance, if a
branch office should be enforced to access the Internet only via a central
firewall. For such applications the parallel Internet access can be disabled as
well.

14.3.2

Dial- in connections (Remote Access Service)

Individual remote computers (hosts) can access the resources of the LAN via
dial-up connections. Practical examples of this are employees working from
home or field staff that dial into the company network.

If the dial-up connection of an individual computer to a LAN is to be realized
via VPN, that computer first connects to the Internet. A special VPN client

Internet

LAN

LAN