AB-1186-01 © 2008 AT&T Intellectual Property. All rights reserved. AT&T and the AT&T logo are trademarks of AT&T Intellectual Property. AT&T VPN Portfolio
Welcome message from author
This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
Transcript
AB-1186-01© 2008 AT&T Intellectual Property. All rights reserved. AT&T and the AT&T logo are trademarks of AT&T Intellectual Property.
AT&T VPN Portfolio
32
Virtual Private Networks (VPN) offer the flexibility to connect allemployees and applications, anywhere, anyhow regardless ofphysical location or access type. VPNs deliver the attributes ofa private data network within a shared network infrastructure.They offer enterprise-class scalability and reach across multipleIP-based infrastructures, along with many of the performanceand security characteristics traditionally found only indedicated private environments.
AT&T’s VPN portfolio offers global networking services rangingfrom individual components to tailored end-to-end solutions.The portfolio provides network-based, premises-based, remoteaccess and hybrid VPN solutions with management capabilitiesranging from individual customer managed to fully managedVPNs. Our portfolio allows you to choose the level ofmanagement that meets your networking needs, in additionto the ability to customize your network design basedupon your business applications.
CustomerLocation
Customer Location(AT&T Managed CPE)
CustomerLocation
RemoteLocation
MobileWorker
MobileWorker
MobileWorker
IP Sec
IP SecInternet
Dial/DSL
Cellular
Wi-Fi
MPLS VPN
AT&T Network
VPN GW
Integrated VPN
AT&T VPN PortfolioAs a business in today’s competitive environment your network is the lifeline for connectingyour locations and ensuring access to critical applications. Enterprises are looking to extendthe network and applications to every location and employee whether in a corporate location,branch office, or mobile workers with remote work locations.
Benefits
• Secure, reliable network architectureproviding any-to-any connectivity globally
• Management capabilities providing thelevel of control you require
• Flexibility to add new locations, applicationsand features to the network
• Improved application performance usingClass of Service to prioritize traffic
• Easily integrate new technologies toexisting infrastructure
• Simplify network management with easyto use web-based tools
• Service Level Agreements to support yourmission critical traffic
• Secure remote access for the mobile,remote employee
• Single sign-on for all applications,regardless of network connection type
• Consistent, global customer experience
for IP networks, including methods for network authentication,data encryption and integrity checking. This comprehensivetunneling standard for VPNs protects data end-to-end, fromthe remote user or desktop to the LAN.
• SSL. This option extends the corporate network by providingsecure communications through a web browser. SSL cansecure connections by authenticating and encryptingtraffic in a clientless environment. As an application layerencryption protocol, it allows secure access to and fromuser devices located outside of traditional enterpriseboundaries. Ideal for clientless access to web-enabledapplications, as well as client-server applications, andprovides a simplified, efficient way for you to roll out a VPNfor remote access applications.
Premises-based solutions allow you to build upon currentinvestments by providing dedicated, broadband, and remoteaccess solutions for connection to the AT&T Global Networkor Internet.
Given the range of applications supported across yourenterprise, one or both encryption protocols may beappropriate. AT&T can fully implement your premises-basedVPN from the largest headquarters location to the travelingsales person.
AT&T’s Hybrid VPN SolutionsAT&T’s hybrid VPN solutions combine the best of network-basedand premises-based technologies. Through our focusedinnovation we can provide seamless interoperability,flexibility and security within a single enterprise networksolution designed to meet your infrastructure andapplication requirements.
Remote Access ServicesRemote access services provide seamless, secure integration of wireline and wireless access technologies and mobilesolutions as an extension of existing enterprise network.Whether the end-user is a remote worker, a traveling user oran extended member within your business model, RemoteAccess Services will provide access to corporate informationand applications on the fly.
Through the use of AT&T’s Global Network Client, with aneasy and simple, single logon, the user’s experience is asflexible and high performing for the remote worker as forthose directly on the corporate network. In addition, theAT&T Global Network Client provides end-user control ofaccess selection and corporate control over who gainsaccess to specified corporate infrastructure applications – both domestically and throughout most of the world.
54
Dial-upor BroadbandUser
Dial-upor BroadbandUser
Service Manager(for Authentication,device configuration)
CorporateInternet
IPSec Tunnel
IPSec TunnelServerAT&T IP Network
Public Internet/3rd Party ISP
IPSec tunnel
Authentication flow(simplified)
AT&T Premises-Based VPN
Full Spectrum of VPN CapabilitiesAT&T Network-Based VPNsAT&T network-based VPNs provide a graceful way to controlthe evolution of your network while providing high levels offlexibility, reliability and security. AT&T network-based VPNs aredelivered via the AT&T Global Network utilizing MultiprotocolLabel Switching (MPLS) routing technology. MPLS is theenabling technology supporting a converged, any-to-anyarchitecture with built-in MPLS security and Class of Service(CoS) to efficiently transport traffic over the network.
This service provides you maximum control and flexibility overyour network performance and functionality. Network-basedVPNs provide consistent access to corporate information insidethe office and to mobile and remote workers regardless ofdevice. You have the ability to select the appropriate level ofClass of Service to prioritize your traffic for your unique needs.The convergence of multiple networks to a single MPLSplatform produces gains in employee productivity, streamlinesoperations, improves security and reliability while reducing thetotal cost of ownership.
AT&T’s network-based VPN solutions address the importance ofproviding a converged network to connect your locations whileintegrating both legacy and leading edge technologies thatyou require today and over time.
AT&T Premises-Based VPNsAT&T premises-based VPNs are delivered by addingintelligent devices such as firewalls or VPN tunneling to thecustomer premises. Our premises-based VPNs are deliveredover AT&T’s highly rated Global Network for users needinga high performing network, or over the Internet, for usersrequiring ubiquitous access and extended reach.
AT&T’s premises-based VPNs help to ensure the confidentiality,integrity and authenticity of data traveling across a networkthrough the use of encrypted tunnels. We provide multipletunneling options, including IP Security (IPSec) and SecureSockets Layer (SSL), allowing you to tailor your premises-basedsolution to meet your networking needs.
If you run applications over the Internet, require an additionallevel of protection through encryption and authentication,or need to extend the reach of your network, to businesspartners, AT&T premises-based VPNs offer these capabilities.The following premises-based solutions are available:
• IPSec. This tunneling option can be used to extend accessto the MPLS VPN by supporting remote users and supplychain partners. IPSec enables you to tailor access rights tothe VPN for each individual user. IPSec is a set of securityprotocols that determine data security at the network layer
CustomerSite D
CustomerSite C
CustomerSite A
CustomerSite B
CE
CE
CE
CE
PE
PE
PE
PE
AccessLine
AccessLine
AccessLine
AccessLine
AT&T Global MPLS
Network
Network-Based VPN
76
Simple, secure access tocorporate information andapplications anywhere, anytime.
Headquarters BranchOffice
EuropeanSite
Hub
PE
VPN Gateway
PE PE
PE
PEMPLS
IPSec
IPSec
MPLS
MPLS
MPLS
MPLS
IPSec
SSL
SSL
Telecommuters athome PCs/kiosk
Power-Telecommuters& SOHO
Suppliers/PartnersBanking Partner
Remote OverseasSite(s)
POP
POP
POPPOP
POP
AT&T Global MPLS
Network
Public Internet
Multiple VPN technology choices working together
Management and MonitoringVPNs are intricate solutions, and AT&T has the expertiseand knowledge to help navigate through the complexityof managing your network. The AT&T VPN portfolio issupported by management capabilities that provide a widerange of network control – from selective out-tasking tocomplete outsourcing.
AT&T has expertise in customer care, network engineeringand management, with operation centers worldwide offeringin-country help desk support to take the complexity out of yourday-to-day networking. AT&T streamlines the management
of your network and alleviates your need to deal with multiplesuppliers. AT&T’s team of experts will design, implement andmanage your solution-a single partner to manage all aspectsof your network.
Putting it All TogetherAT&T offers you the most comprehensive set of networkand premises-based solutions for all applications of VPNsin the industry. We are committed to offering enterprisesbest-in-class industry technology for performance, reliability,network agility and security.
For more information contact your AT&T Representative or visit us at www.att.com/business.
SecurityEnsuring the security of your network is critical. You can createa highly secure network by choosing a network-based VPN overthe AT&T Global Network. Security is built into AT&T’s GlobalNetwork using MPLS technology within the backbone, and isdirectly managed by AT&T for high levels of availability and Classof Service. With premises-based VPNs security is built into theservice by utilizing tunneling, encryption, access control andauthentication options.
There is an array of additional options designed to give youmaximum flexibility in securing your VPN whether you implementa premises-based, network-based or hybrid VPN solution.
Security ServicesThe following security services are available to augmentyour VPN solution:
• Firewall Security ServicesSecure your access to the Internet with managedfirewall services. Functionality can be deployedwithin the AT&T network or in customerpremises devices
• Intrusion Detection ServicesExtend managed security services beyond thefirewall through providing comprehensive monitoring,attack recognition and response based upon youpredefined security policy
• Network Scanning ServicesUtilize real time network scanning for potentialentry points open to malicious attack through anautomated web-based scanning tool that probesInternet-facing devices for vulnerability
• Remote Access SecurityFor users of the AT&T Global Network Client thereis optional AT&T Endpoint Security available,in addition to encrypted site-to-site connectivity
Extending your VPN through remote access
Related Documents
