SKUDONET Load Balancer v10 includes a VPN module inside the Routing system, this VPN module is designed to securize traffic from Clients to SKUDONET and traffic from SKUDONET to Backend servers.
But what a VPN is? A VPN allows users to connect to a certain network securely, even if they are not physically connected to the required network. SKUDONET Load Balancer supports a variety of VPN encryption methods, including AES-256, blowfish-256, and camellia-256. It also supports a variety of VPN authentication methods, including MD5, SHA-1, and SHA-256. SKUDONET Load Balancer also supports market-standard VPN protocols, such as L2TP/IPsec, IKEv1, and IKEv2.
Users can create a variety of VPN profiles on SKUDONET Load Balancer, depending on their needs. The three supported VPN profiles are:
- ZSS: VPN Site-to-Site. This type of VPN connects two networks with different networks. It can be used to connect clients to a SKUDONET load balancer or to connect a SKUDONET load balancer to real servers. SKUDONET will act as the default gateway for each local and remote subnet. ZSS (Sito to Site) uses IPsec encryption. Do you want to know more about SKUDONET Site-to-Site VPN? Read this article.
- ZTN: VPN Tunnel. This type of VPN creates a tunnel between two networks. It can be used to connect clients to a SKUDONET load balancer or to connect a SKUDONET load balancer to real servers. SKUDONET will act as the default gateway for each local and remote subnet. ZTN (Tunnel) uses a GRE tunnel over IPsec encryption. Do you want to know more about SKUDONET Tunnel VPN? Read this article.
- ZRS: Remote Server. This type of VPN allows clients to connect to a VPN server. SKUDONET will act as the VPN server and assign the client a dynamic IP address. The dynamic IP address will be routed to the destination network through the routing system. ZRS (Remote Server) uses IPsec encryption in server mode for clients in road warrior mode. Do you want to know more about SKUDONET Remote ServerVPN? Read this article.
The image below shows the table of VPN networks and their properties.
Here is a short explanation of what each column in the table means.
Name: A unique name for the VPN profile.
Profile: The type of VPN to use, such as Site to Site (SS), Tunnel (TN) or Remote Server (RS).
Local: The IP address of the local server, the VPN Endpoint. Supports both IPv4 and IPv6.
Local net: The subnet mask of the local server, if configured. This netmask must be configured when you set up the IP of the local server.
Remote: The IP address of the remote server, if configured. Supports both IPv4 and IPv6.
Remote net: The subnet mask of the remote server, if configured. This netmask must be configured when you set up the IP of the remote server.
Status: The health status of the VPN. The following colours are used to indicate the status of a VPN:
- Green: The VPN is up and running.
- Red: The VPN is down and not running.
Actions: These are the things you can do to manage a selected VPN profile.
- Create VPN: This allows you to create a new VPN profile.
- Restart: This restarts a VPN profile if it is slow or not responding.
- Start: This activates a VPN profile and allows packets to flow through the associated IP address.
- Stop: This deactivates a VPN profile and prevents it from accepting packets.
- Delete: This removes a VPN profile from the table list and its associated configurations.