èŠ‚ç‚¹æ–‡çŒ®

æ”¯æŒVPNçš„éš§é“æŠ€æœ¯ç ”ç©¶

Research on tunneling techniques supporting VPN

æŽ¨è CAJä¸‹è½½
PDFä¸‹è½½
ä¸æ”¯æŒè¿…é›·ç‰ä¸‹è½½å·¥å…·ï¼Œè¯·å–æ¶ˆåŠ é€Ÿå·¥å…·åŽä¸‹è½½ã€‚

ã€ä½œè€…ã€‘ èµµé˜¿ç¾¤ï¼› å‰é€¸ï¼› é¡¾å† ç¾¤ï¼›

ã€Authorã€‘ ZHAO A qun,JI Yi,GU Guan qun (Computer Department,Southeast University, Key Laboratory for Computer Networks,Ministry of Education,Nanjing 210096,China)

ã€æœºæž„ã€‘ ä¸œå—å¤§å¦è®¡ç®—æœºç³»æ•™è‚²éƒ¨è®¡ç®—æœºç½‘ç»œé‡ç‚¹å®žéªŒå®¤!æ±Ÿè‹å—äº¬210096ï¼›

ã€æ‘˜è¦ã€‘ :éš§é“æŠ€æœ¯æ˜¯å®žçŽ°VPNçš„å…³é”®æŠ€æœ¯ ,æœ¬æ–‡é¦–å…ˆå¯¹GRE ,L2TP ,IPSecå’ŒIP/IPç‰éš§é“åè®®è¿›è¡Œäº†æ¯”è¾ƒç ”ç©¶ ;ç„¶åŽæå‡ºäº†åœ¨çŽ°æœ‰æ¡ä»¶ä¸‹å®žçŽ°VPNçš„éš§é“åè®®çš„é›†æˆæ–¹æ¡ˆ ,è¯¥æ–¹æ¡ˆåˆ©ç”¨â€œéš§é“â€æ¨¡å¼çš„IPSecä½œä¸ºåŸºæœ¬çš„æ•°æ®å°è£…æ‰‹æ®µå’Œéš§é“çš„å®‰å…¨ä¿éšœ ,åˆ©ç”¨Internetå¯†é’¥äº¤æ¢åè®®IKEä½œä¸ºéš§é“é…ç½®çš„ä¿¡ä»¤åè®® ,å€Ÿé‰´IP/IPåè®®ä¸çš„â€œè½¯çŠ¶æ€â€æœºåˆ¶ä½œä¸ºéš§é“ç»´æŠ¤å’Œç®¡ç†çš„æ‰‹æ®µ ;æœ€åŽæˆ‘ä»¬ç»™å‡ºäº†åœ¨VPNç½‘å…³ä¸Šéš§é“å®žçŽ°çš„æ¨¡å—ç»“æž„ã€‚æ›´å¤š è¿˜åŽŸ

ã€Abstractã€‘ Tunneling technique is the key technique to implement VPN In this paper,we first perform a comparative research on the existing tunneling protocols including GRE,L2TP,IPSec and IP/IP Then we propose an integrated scheme of tunneling mechanism to support VPN under current condition In this scheme,we useâ€œtunnelingâ€mode IPSec as the basic data encapsulation method and the security guarantee of the tunnels,make use of Internet Key Exchange protocol as the signal protocol for tunnel establishment,and refer to the â€œsoft stateâ€mechanism in IP/IP protocol to implement tunnel maintenance and management At last we give the implementation architecture of the scheme in the VPN gatewayæ›´å¤š è¿˜åŽŸ