Home About Us Products Case Studies News Support Contact

Home > Products > PacketiX VPN > Product Information > Architecture

PacketiX VPN 2.0

Architecture

1. Basic components: Client, Server, Bridge
2. Connection types: Client Connection, Cascade Connection, Local Bridge
3. Advanced: Virtual Layer 3 Switch, SecureNAT and Virtual DHCP Server

A virtual private network established with PacketiX™ VPN 2.0 is realized by virtualizing the ethernet devices by software. The Ethernet network card is emulated as a Virtual LAN Card, switching hub and or LAN cables are represented as a VPN session. PacketiX VPN can even emulate advanced network architecture such as switches, NAT routers and DHCP servers.

Basic Components

PacketiX VPN Client

The VPN Client is installed on single PCs to establish a connection to the PacketiX VPN Server.

PacketiX VPN Server

The PacketiX VPN Server is the central instance that creates and manages the VPN.

Within the server, one or several Virtual Hubs are created that receives the VPN connection requests from VPN clients and VPN bridges. The server can also create local bridge to the local physical network. Advanced virtual network devices such as virtual switches and DHCP servers are also created by the server.

For large networks, several PacketiX VPN Servers can either manage different sections of the network, or a powerful central server cluster can be created.

PacketiX VPN Bridge

PacketiX™ VPN Bridge is a software that enables the local network at a remote location to connect to a PacketiX™ VPN Server or Virtual Hub via a Cascade Connection. It also enables a VPN link to function as a Layer 2 bridge connection between a physical network adapter and a computer running a PacketiX™ VPN Bridge.

• See the PacketiX Online Manual, Chapter 1.2 for details on what components the PacketiX VPN software suite is composed of.

Connection types

Client connection

Contrary to a Cascade Connection which links a whole local network to the VPN, a client connection links only a single PC via a virtual LAN card.

Cascade Connection

Cascade Connection is a function to connect virtual hubs to each other. Using the Cascade Connection to connect to hubs linked to the local network via local bridges, it is possible to unite two local networks via VPN.

Local Bridge

The local bridge connection function connects a virtual hub or VPN operated by the VPN server and the physical LAN card of the same server, thereby joining two separate segments into one network. Using the local bridge function, all devices on the local network can be used by the other clients on the VPN.

• See Chapter 1.6 of the PacketiX 2.0 Online Manual for detailed information on session and connection types in PacketiX VPN.

Advanced architecture

Virtual Layer 3 Switch

For the purpose of routing between two IP adress ranges within the VPN, administrators can create a Virtual Layer 3 Switch on the server. This allows to define certain paths within a large network that is divided into several subnetworks.

SecureNAT and Virtual DHCP Server

The SecureNAT function is an innovative technology developed for PacketiX™ VPN, which enables to increase network security by virtualizing the NAT (network address translation) function.

Many of the broadband routers currently available for business and consumer use have an integrated NAT function. This allows the user to connect a computer via local LAN to the router, which in turn enables access to the Internet via NAT. An integrated DHCP server provides automatic assignment of IP addresses in the local network. The PacketiX™ VPN SecureNAT functionality virtualizes the NAT and DHCP server, so it can be used like a broadband router between a virtual and a physical LAN. Security is strengthened by carrying out all processes in user mode.