Sidebar

Choose the optimal VPN service

Home » Webinars » Virtual Private Networks » Choose the optimal VPN service

This entry-level webinar offers a comprehensive overview of modern VPN services, from MPLS-based VPN services offered by the service providers (Layer-3 MPLS/VPN, point-to-point links and VPLS), to VPN services you can build on top of generic IP infrastructure (GRE, IPsec, DMVPN, GETVPN, SSL VPN). Description of each VPN service also includes its benefits, drawbacks and design guidelines.

Last modified on 2024-01-07 (release notes)

ARF PDF MP4 ZIP

Choose the optimal VPN service

24:09 Free items Introduction, Terminology and Requirements

This section defines Virtual Private Networks, describes their typical topologies, as well as requirements and decision points you should consider when either buying or building a VPN service.

VPN Definitions and Terminology 13:31 2018-12-08
VPN Requirements and Decision Points 10:38 2018-12-08

1:24:20 Provider-Controlled VPN

You could build your own VPN or buy it as a service from a Service Provider. This section describes the customer perspective of typical Service Provider offerings including:

  • Layer-3 VPNs implemented with MPLS/VPN or EVPN/VXLAN technology
  • Layer-2 point-to-point or point-to-multipoint circuits
  • Virtual LAN (E-LAN or VPLS) services
Layer-3 VPN (L3VPN) Introduction 12:48 2018-12-08
Routing Protocols Interaction with L3VPN 23:55 2018-12-08
L3VPN Benefits and Drawbacks 10:33 2018-12-08
Point-to-Point Circuits (E-Line) 22:34 2018-12-08
Virtual LAN Service (E-LAN) 14:30 2018-12-08
Ethernet Encryption 52:00

More Information

Provider Provisioned Virtual Private Network (VPN) Terminology (RFC 4026)

1:17:52 Customer-Built VPNs

You might want to build your own VPN on top of Internet to keep the costs low, or do the same on top of provider-built VPN because you don't trust their skill. This section gives you an overview of most popular technologies you could use.

Introduction 17:37 2019-02-13
Generic Route Encapsulation (GRE) 19:33 2019-02-13
Internet Protocol Security (IPsec) and GETVPN 15:18 2019-02-13
Dynamic Multipoint VPN (DMVPN) 20:12 2019-02-13
Secure Socket Layer (SSL) VPN 5:12 2019-02-13

Further Reading

TCP MSS Clamping – What Is It and Why Do We Need It?
Reinventing SSL VPN (RFC 1925 Strikes Again)
DMVPN Technology and Configuration 2:37:00
DMVPN Designs 1:37:00
DMVPN New Features 1:52:00

28:55 Hybrid and Multi-Provider VPN

Want to use MPLS/VPN as your primary WAN with Internet-based VPN as a backup? Or run your own MPLS/VPN on top of DMVPN or IPsec because you have many internal tenants but don't own WAN infrastructure?

This section describes several hybrid VPN architectures, and introduces Software-Defined WAN - most commonly an orchestration layer on top of a proprietary hybrid VPN solutions.

Hybrid VPN Solutions 9:19 2019-02-13
Software-Defined WAN 13:24 2019-02-13
Conclusions 6:12 2019-02-13
Enterprise MPLS VPN Deployment 4:42:00
Software-Defined WAN (SD-WAN) Overview 1:34:00

1:09:54 From the ipSpace.net Design Clinic

IP Transport Across Enterprise IP Backbone 25:57 2021-10-01
Carrier Ethernet Basics 10:00 2022-05-30
Building Carrier Ethernet Networks 18:16 2022-05-30
GPON in Campus Networks 15:41 2022-11-02

Additional Resources

Slide deck 3.8M 2018-01-23
Frequently-Asked Questions 131K 2018-01-18
IPsec Overhead Calculation Tool
%arc%
%arc%
%arc%
You started this section on %started% Mark completed