1. Presented
TuanTB
Virtual Private Network& Data Security

2. What is a VPN?
Introduction
3. What is a VPN?
1. Client access Site ( Client access LAN)
2. Intranet VPN
3. Extranet VPN
4. What is a VPN?
Remote User
Internet
AI&T Company
5. What is a VPN?
Internet
BachKim
Company
AI&T Company
Intranet VPN
6. What is a VPN?
Guest Company
Internet
AI&T Company
Extranet VPN
7. What about Security for VPN connection ?
Attackviatransmission line
Attack via stealing the certificate & Key
8. Attack via transmission line
Attacker
Remote User
Internet
AI&T Company
9. How to use a VPN?
1. OpenVPN software
2.Two Certificate (Client & Server) and one Key.
3. Password
10. Security Technology

Hardening openvpn securityThe tls adds HMAC signature to all SSL/TLS handshare packets for integrity verification. It is protect again: 11. Dos attacks or port flooding. 12. Port scanningto dertermine which server UDP Ports are in a listening state 13. SSL/TLS handshake initiations from unauthorized machines 14. Larger RSA Keys (default = 1024). By using the option: KEY_SIZE 15. Larger symmetric keys (default = Blowfish-128-CBC). By using the option: cipher = 16. Thereto,Supposea Attacker capture some packages. These packages brings informationVPN Server (Ex: Port, Protocol, destination or source IP,) They can only show that, becauce they dont have any cer or key file.

Conclution
Any question ?