Understanding Contemporary Controls’ VPN Options

6
AN-VPNOPT00-AA0 Application Note – VPN Options Understanding Contemporary Controls’ VPN Options A virtual private network (VPN) can provide secure access to remote job sites while giving systems integrators the flexibility to monitor and maintain systems from the convenience of their home or office. However, deciding which VPN is right for you can be confusing. Which VPN service should I use? What are the features, capabilities, and limitations? Can I maintain my own VPN? Contemporary Controls offers three VPN solutions to meet your remote access needs – our RemoteVPN subscription service, and our Self-HostedVPN and BridgeVPN solutions. Contemporary Controls’ EIPR-V, EIGR-V series, and EIGR-C series Skorpion IP routers support OpenVPN® client functionality and can be used with our RemoteVPN subscription service. Our EIGR-V, EIGR-VB routers can be configured as VPN servers for our Self-HostedVPN and BridgeVPN solutions. RemoteVPN subscription service: Contemporary Controls’ RemoteVPN subscription service provides secure communication and the convenience of remote access without having to maintain the VPN server. Hosted on the Internet and maintained by Contemporary Controls, RemoteVPN incorporates a cloud-based OpenVPN server, OpenVPN clients for workstations and mobile devices, and OpenVPN routers installed at job sites. In addition to the RemoteVPN subscription service, Contemporary Controls offers Self-HostedVPN and BridgeVPN solutions which allow users to set up and maintain their own secure remote access without subscription fees and without the need for a cloud-based VPN server. EIGR-V OpenVPN client OpenVPN client EIGR-C Remote Site 1 Remote Site 2 RemoteVPN LTE

Transcript of Understanding Contemporary Controls’ VPN Options

Page 1: Understanding Contemporary Controls’ VPN Options

AN-VPNOPT00-AA0

Application Note – VPN Options

Understanding Contemporary Controls’ VPN Options

A virtual private network (VPN) can provide secure access to remote job sites while giving systems integrators the flexibility to monitor and maintain systems from the convenience of their home or office.

However, deciding which VPN is right for you can be confusing. Which VPN service should I use? What are the features, capabilities, and limitations? Can I maintain my own VPN?

Contemporary Controls offers three VPN solutions to meet your remote access needs – our RemoteVPN subscription service, and our Self-HostedVPN and BridgeVPN solutions.

Contemporary Controls’ EIPR-V, EIGR-V series, and EIGR-C series Skorpion IP routers support OpenVPN® client functionality and can be used with our RemoteVPN subscription service. Our EIGR-V, EIGR-VB routers can be

configured as VPN servers for our Self-HostedVPN and BridgeVPN solutions.

RemoteVPN subscription service: Contemporary Controls’ RemoteVPN subscription service provides secure communication and the convenience of remote access without having to maintain the VPN server. Hosted on the Internet and maintained by Contemporary Controls, RemoteVPN incorporates a cloud-based OpenVPN server, OpenVPN clients for workstations and mobile devices, and OpenVPN routers installed at job sites.

In addition to the RemoteVPN subscription service, Contemporary Controls offers Self-HostedVPN and BridgeVPN solutions which allow users to set up and maintain their own secure remote access without subscription fees and without the need for a cloud-based VPN server.

EIGR-VOpenVPN client

OpenVPN client EIGR-C

Remote Site 1

Remote Site 2RemoteVPN

RemoteVPN

RemoteVPN

RemoteVPN

RemoteVPN

RemoteVPN

RemoteVPN

LTE

Page 2: Understanding Contemporary Controls’ VPN Options

AN-VPNOPT00-AA0

Application Note – VPN Options

2

Self-HostedVPN solution: For network savvy users, Contemporary Controls’ Self-HostedVPN solution utilizes the EIGR-V Skorpion Gigabit IP router configured to operate in OpenVPN server mode. This allows the router to act as the VPN server capable of supporting Contemporary Controls’ wired and cellular routers as VPN clients. This Self-HostedVPN solution provides wired or wireless remote access for multiple clients – up to 15 wired/cellular IP routers in OpenVPN client mode and 15 OpenVPN clients on PC/tablet/phone.

EIGR-V

EIGR-V

OpenVPN Client

Static IP

OpenVPN ClientEIGR-C

Remote Site 1

Remote Site 2

LTE

OpenVPN Client

OpenVPN server

OpenVPN Client

EIGR-VB

Remote Site

OpenVPN Client

OpenVPN Server

Static IP

BridgeVPN solution: For single-site, remote access solutions, Contemporary Controls also offers a BridgeVPN solution which utilizes the EIGR-VB Gigabit IP router configured to operate in OpenVPN server mode as a wired bridge VPN server. This BridgeVPN solution can support up to 10 VPN clients on PC/tablet/phone.

These Self-HostedVPN and BridgeVPN PC/tablet/phone clients can be located anywhere that has Internet connectivity.

To help facilitate your decision about which VPN is right for you, the following table provides a comparison of the features, capabilities, and limitations of our RemoteVPN subscription service, and our Self-Hosted and BridgeVPN solutions. For more information, visit the CTRLink IP Routers pages on our website.

https://www.ccontrols.com/ctrlink/routers.htm
https://www.ccontrols.com/ctrlink/routers.htm
Page 3: Understanding Contemporary Controls’ VPN Options

AN-VPNOPT00-AA0

Application Note – VPN Options

3

FeatureVPN Server Hosted/Maintained by

Contemporary Controls User User

VPN Server Device Cloud Server EIGR-V Skorpion Gigabit IP router

EIGR-VB Skorpion Gigabit IP router

Subscription Fee Yes No NoStatic IP from User No Yes, for VPN server Yes, for VPN serverStatic IP on VPN Client No No NoVPN mode between client/server

Routing Routing Bridge

Client router devices at remote sites

Yes Yes No

Client Router devices EIPR-V, EIGR-V, EIGR-C

EIPR-V, EIGR-V, EIGR-C

Client PC/Tablet/Phones at Home/Office

Yes Yes Yes

Windows OS Support Yes Yes YesLinux OS Support Yes Yes YesiOS Support Yes Yes YesAndroid Support Yes Yes NoMulticast/Broadcast allowed through VPN tunnel

No No Yes

BBMD required for BACnet

Yes Yes No

Maximum router clients

60 per user account 15 0

Maximum PC/Tablet/Phone clients

120 per user account 15 10

Configure Access Permissions for a PC/Phone/Tablet client for specific router client

Yes, via cloud account Yes, via webpage of EIGR-V

VPN server router

No, all PC clients have access

Access from a client PC/Phone/Tablet to multiple router sites simultaneously

Yes Yes No, only one site at a time

Wired Remote Access Yes Yes Yes

RemoteVPN

RemoteVPN

RemoteVPN

RemoteVPN

RemoteVPN

RemoteVPN

RemoteVPN

Self-HostedVPNBridgeVPN

BridgeVPN

BridgeVPN

BridgeVPN

BridgeVPN

BridgeVPN

BridgeVPN

BridgeVPN

BridgeVPN

Page 4: Understanding Contemporary Controls’ VPN Options

AN-VPNOPT00-AA0

Application Note – VPN Options

4

Cellular Remote Access Yes Yes NoRemote Site Startup Before the Infrastructure is Completed

Yes Yes No

Cellular Access at Multiple Sites

Yes Yes No

Remote Access to an Existing Building Automation System such as a JACE

Yes Yes Yes

Interconnect Multiple Facilities

Yes No No

Access Wi-Fi Devices at Remote Site

Yes, with wired or cellular Internet connection

Yes, with wired or cellular Internet connection

Yes, with wired internet connection

Interconnect to Other Topologies

Yes Yes Yes

EIGR-VOpenVPN client 2

OpenVPN client 1 EIGR-C

Remote Site 1

Remote Site 2RemoteVPN

RemoteVPN

RemoteVPN

RemoteVPN

RemoteVPN

RemoteVPN

RemoteVPN

LTE

Note: The Static IP Address requirement for VPN server for Self-Hosted and BridgeVPN can also be fulfilled by connecting the OpenVPN Server IP router behind an existing Internet firewall/router with a Public Static IP. The internet firewall/router will need to have a Port Forwarding entry for the OpenVPN port forwarded to OpenVPN Server router.

RemoteVPN Solution Communication Options: RemoteVPN cloud account provides options to set Network Access Permissions for each OpenVPN client to communicate to the devices at multiple remote sites.

For example:

- OpenVPN client 1 can be configured to communicate to Remote Site 1.

- OpenVPN client 2 can be configured to communicate to Remote Site 2.

- OpenVPN client 1 can be configured to communicate to Remote Site 1 and 2 simultaneously.

- OpenVPN client 2 can be configured to communicate to Remote Site 1 and 2 simultaneously.

- OpenVPN client 1 and client 2 can simultaneously talk to Remote site 1 and 2.

Page 5: Understanding Contemporary Controls’ VPN Options

AN-VPNOPT00-AA0

Application Note – VPN Options

5

Self-Hosted Solution Communication Options: EIGR-V OpenVPN Server IP router webpage provides options to set Access Permissions for each OpenVPN client to communicate to the devices at multiple remote sites.

For example:

- OpenVPN client 1 can be configured to communicate to Remote Site 1.

- OpenVPN client 2 can be configured to communicate to Remote Site 2.

- OpenVPN client 1 can be configured to communicate to Remote Site 1 and 2 simultaneously.

- OpenVPN client 2 can be configured to communicate to Remote Site 1 and 2 simultaneously.

- OpenVPN client 1 and client 2 can simultaneously talk to Remote site 1 and 2.

EIGR-V

EIGR-V

OpenVPN Client 1

OpenVPN Client 1

Static IP

OpenVPN ClientEIGR-C

Remote Site 1

Remote Site 2

LTE

OpenVPN Client

OpenVPN server

OpenVPN Client 2

OpenVPN Client 2

EIGR-VB

EIGR-VB

Remote Site 1

Remote Site 2

OpenVPN Server

OpenVPN Server

Static IP

BridgeVPN Solution Communication Options: All OpenVPN clients of an EIGR-VB OpenVPN server can communicate to a single remote site. To support multiple sites:

- A EIGR-VB is required at each site.

- An OpenVPN Client can have configuration files for multiple remote sites and connect to a single remote site as required.

- Simultaneous access to multiple remote sites is not allowed.

For example:

- OpenVPN client 1 can talk to Remote Site 1 or 2.

- OpenVPN client 2 can talk to Remote site 1 or 2

- OpenVPN client 1 and 2 can communicate to Remote site 1 simultaneously.

- OpenVPN client 1 and 2 can communicate to Remote site 2 simultaneously.

Page 6: Understanding Contemporary Controls’ VPN Options

AN-VPNOPT00-AA0

Application Note – VPN Options

October, 2021

United StatesContemporary Control Systems, Inc.

Tel: +1 630 963 7070 Fax:+1 630 963 0109

[email protected]

ChinaContemporary Controls (Suzhou) Co. Ltd

Tel: +86 512 68095866 Fax: +86 512 68093760

[email protected]

United KingdomContemporary Controls Ltd

Tel: +44 (0)24 7641 3786 Fax:+44 (0)24 7641 3923

[email protected]

GermanyContemporary Controls GmbH

Tel: +49 341 520359 0 Fax: +49 341 520359 16

[email protected]

www.ccontrols.com

Model RoHS Description

EIGR-C3 Skorpion GigE IP Router with Cellular (Verizon) 0 to 60°C EIGR-V Skorpion GigE IP Router with VPN 0 to 60°CEIGR-VB Skorpion GigE IP Router with Bridge VPN 0 to 60°CEIPR-V Skorpion 10/100Mbps IP Router with VPN

Ordering Information

http://www.ccontrols.com
https://www.ccontrols.com/ctrlink/eigrc.php
https://www.ccontrols.com/ctrlink/eigr.php
https://www.ccontrols.com/ctrlink/eigr.php
https://www.ccontrols.com/ctrlink/eipr.php

Comparison between traditional vpn and mpls vpn

Comparison between traditional vpn and mpls vpn

Global VPN Client Administration Guide...SonicWall Global VPN Client 4.10 Administration Guide Introduction to Global VPN Client 1 6 Introduction to Global VPN Client • Global VPN

Global VPN Client Administration Guide...SonicWall Global VPN Client 4.10 Administration Guide Introduction to Global VPN Client 1 6 Introduction to Global VPN Client • Global VPN

VPN Configuration Guide - VPN Tracker - #1 VPN Client for ... · PDF fileIntroduction This configuration guide helps you configure VPN Tracker and your Cisco VPN gateway to establish

VPN Configuration Guide - VPN Tracker - #1 VPN Client for ... · PDF fileIntroduction This configuration guide helps you configure VPN Tracker and your Cisco VPN gateway to establish

Reliable Remote Access Solution for Small Businesses ... · 3 USG20-VPN/USG20W-VPN VPN Firewall Model Remote Offices/Small Businesses (SBs) USG20-VPN USG20W-VPN Product photo Hardware

Reliable Remote Access Solution for Small Businesses ... · 3 USG20-VPN/USG20W-VPN VPN Firewall Model Remote Offices/Small Businesses (SBs) USG20-VPN USG20W-VPN Product photo Hardware

Network With Us - Contemporary Controls · network technology to your automation project. With over 30 years of experience in electronics design, development and manufacturing, Contemporary

Network With Us - Contemporary Controls · network technology to your automation project. With over 30 years of experience in electronics design, development and manufacturing, Contemporary

HUAWEI HiSecEngine USG6500E Series Firewalls (Desktop) · 2019. 10. 21. · VPN encryption Supports multiple highly available VPN features, such as IPSec VPN, SSL VPN, L2TP VPN, and

HUAWEI HiSecEngine USG6500E Series Firewalls (Desktop) · 2019. 10. 21. · VPN encryption Supports multiple highly available VPN features, such as IPSec VPN, SSL VPN, L2TP VPN, and

Contact Center Strategy: Increasing Efficiency through … · 2018. 10. 19. · VPN VPN VPN VPN VPN MPLS IP Infrastructure Fax Web contact E-mail Self-service (IVR) Point of sale

Contact Center Strategy: Increasing Efficiency through … · 2018. 10. 19. · VPN VPN VPN VPN VPN MPLS IP Infrastructure Fax Web contact E-mail Self-service (IVR) Point of sale

GTA VPN OptGuide - TheGreenBow VPN Client · 2007. 9. 27. · iii GTA VPN Option Guide Contents Contents INTRODUCTION 1 ... GTA VPN Option Guide VPN (virtual private networks) optional

GTA VPN OptGuide - TheGreenBow VPN Client · 2007. 9. 27. · iii GTA VPN Option Guide Contents Contents INTRODUCTION 1 ... GTA VPN Option Guide VPN (virtual private networks) optional

IP VPN Management - KNOM · Network based IP VPN Layer 3 VPN ... • PE-CE can be e-BGP, OSPF, RIP or Static ... Case Study 3: VPN + LDP + RSVP TE Tunnel VPN A VPN A

IP VPN Management - KNOM · Network based IP VPN Layer 3 VPN ... • PE-CE can be e-BGP, OSPF, RIP or Static ... Case Study 3: VPN + LDP + RSVP TE Tunnel VPN A VPN A

VPN Configuration Guide · PDF fileThis configuration guide helps you configure VPN Tracker ... computer networking and VPNs can ... ‣ Go to VPN > IPsec VPN and switch to the VPN

VPN Configuration Guide · PDF fileThis configuration guide helps you configure VPN Tracker ... computer networking and VPNs can ... ‣ Go to VPN > IPsec VPN and switch to the VPN

VPN 3000 Concentrator Overview - Lagout Security/NLI/VPN... · VPN 3000 Concentrator Overview The VPN 3000 Concentrator is used primarily for VPN clients. It can also be configured

VPN 3000 Concentrator Overview - Lagout Security/NLI/VPN... · VPN 3000 Concentrator Overview The VPN 3000 Concentrator is used primarily for VPN clients. It can also be configured

EVR100 VPN Tunnel Configuration Guide v1.2 - … VPN Tunnel Configuration...Wireless Gigabit VPN Router EVR100 VPN Configuration Guide Wireless N VPN Router with Gigabit Switch V1.0

EVR100 VPN Tunnel Configuration Guide v1.2 - … VPN Tunnel Configuration...Wireless Gigabit VPN Router EVR100 VPN Configuration Guide Wireless N VPN Router with Gigabit Switch V1.0

TheGreenBow VPN Client · TheGreenBow IPSec VPN Client ... 1.2 VPN Network topology In our VPN network example (diagram hereafter), ... local_net 192.168.1.0/24

TheGreenBow VPN Client · TheGreenBow IPSec VPN Client ... 1.2 VPN Network topology In our VPN network example (diagram hereafter), ... local_net 192.168.1.0/24

Configuring VLAN-VPN Guide 2 Configuring VLAN-VPN VLAN-VPN 1.2 Supported Features The VLAN-VPN function includes: basic VLAN-VPN and flexible VLAN-VPN (VLAN mapping). Basic VLAN-VPN

Configuring VLAN-VPN Guide 2 Configuring VLAN-VPN VLAN-VPN 1.2 Supported Features The VLAN-VPN function includes: basic VLAN-VPN and flexible VLAN-VPN (VLAN mapping). Basic VLAN-VPN

D.Kartheek murugan. outline What is a VPN? Types of VPN Why use VPNs? Types of VPN protocols Encryption Disadvantage of VPN.

D.Kartheek murugan. outline What is a VPN? Types of VPN Why use VPNs? Types of VPN protocols Encryption Disadvantage of VPN.

Export Controls: A Contemporary History

Export Controls: A Contemporary History

TheGreenBow VPN Client - Zendesk · PDF file... 4 2.1 Enable the Opengear VPN ... TheGreenBow VPN Client software ... Once both Opengear VPN gateway and TheGreenBow IPSec VPN Client

TheGreenBow VPN Client - Zendesk · PDF file... 4 2.1 Enable the Opengear VPN ... TheGreenBow VPN Client software ... Once both Opengear VPN gateway and TheGreenBow IPSec VPN Client

Virtual Private Network (VPN). -2--2- Topics Discussion What is a VPN? What is a VPN? Types of VPN Why we use VPN? Disadvantage of VPN Types of.

Virtual Private Network (VPN). -2--2- Topics Discussion What is a VPN? What is a VPN? Types of VPN Why we use VPN? Disadvantage of VPN Types of.

Understanding and Configuring VPC Peering, VPN, and ... · PDF fileAWS VPC Access Hardware-based VPN Direct Connect VPN CloudHub Software VPN. VPN Types Corporate Datacenter Internet

Understanding and Configuring VPC Peering, VPN, and ... · PDF fileAWS VPC Access Hardware-based VPN Direct Connect VPN CloudHub Software VPN. VPN Types Corporate Datacenter Internet

BASR BAS Remote - Contemporary Controls

BASR BAS Remote - Contemporary Controls