1、 i 基于基于 IPSec 协议的协议的 Linux VPN 网关平台网关平台 摘要:摘要:因特网协议安全(IPSec)是一系列建立在网络层最顶端的协议,通常被用来建立虚 拟隧道,最广为人知的是虚拟专用网络(VPN)。虚拟专用网络(VPN)在公共网络,如因特 网中扩展出一个私有网络。 它使计算机通过共享的或公共的网络来发送和接收数据,就好 像它是直接连接到私有网络,而且受益于私有网络的功能性、安全性和管理政策。 本次课题中,论文首先对 IPSec VPN 的背景和原理进行了一些简单的介绍,接着论文介 绍了 VPN 网关实现的具体步骤及功能。 本次课题使用了 Linux系统这个免费开源的平台 用
2、来作为 VPN 网关。 通过在一个 Linux系统上搭建 VPN 服务器来充当 VPN 网关并采用 了 xl2tp 协议进行数据传输,在另一个 Linux 系统上搭建 web 以及 ftp 服务用来充当私有 网络。 最后用一台 Windows 充当公共网络中的一台主机, 通过拨号直接连入 VPN 网关, 对私有网络的 web 以及 ftp 实现访问。本次课题的成功展示出了 IPSec VPN 在传输数据 方面的良好的安全性、网络功能和管理性能,同时也展现出了 IPSec VPN 良好的研究应 用价值和开发前景。 关键字:关键字:Linux;虚拟专用网络;IPSec;网关;xl2tp ii Li
3、nux VPN gateway platform based on IPSec protocol Abstract: Internet Protocol Security (IPsec) is a set of protocols which sit on top of the Internet Protocol (IP) layer, it is used to build virtual tunnels, commonly known as Virtual Private Networks (VPNs). A virtual private Network (VPN) extends a
4、private network across a public network, such as the Internet. It enables a computer to send and receive data across shared or public networks as if it were directly connected to the private network, while benefiting from the functionality, security and management policies of the private network. In
5、 this topic, the thesis simply introduced the background and principle of IPSec VPN, and then introduced the concrete steps to implement VPN gateway and the function of VPN gateway. Linux system, the free, open source platform was used for VPN gateway in the topic. The VPN server was set up on a Lin
6、ux system to act as the VPN gateway and adopted xl2tp protocols for data transmission, and then another Linux system was used to build web and FTP service to act as a private network. Finally a Windows system was built to act as the host of the public network, achieving access to web and FTP service of the private network by dialing directly connected to the VPN gateway. This topic successfully showed the good security, powerful network function and high performance of management, it also showe
