was taken from some references, if any question about this i hope i can help :)
Network Virtualization
A method of combining the available resources in a network by splitting up the available bandwidth into channels, each of which is independent from the others, and each of which can be assigned (or reassigned) to a particular server or device in real time. Each channel is independently secured. Every subscriber has shared access to all the resources on the network from a single computer.
Network management can be a tedious and time-consuming business for a human administrator. Network virtualization is intended to improve productivity, efficiency, and job satisfaction of the administrator by performing many of these tasks automatically, thereby disguising the true complexity of the network. Files, images, programs, and folders can be centrally managed from a single physical site. Storage media such as hard drives and tape drives can be easily added or reassigned. Storage space can be shared or reallocated among the servers.
Network virtualization is intended to optimize network speed, reliability, flexibility, scalability, and security. Network virtualization is said to be especially effective in networks that experience sudden, large, and unforeseen surges in usage.
Virtual Adapter
Transmission Control Protocol/Internet Protocol (TCP/IP) settings that a security device assigns to a remote Xauth user for use in a virtual private network (VPN) connection. These settings include IP address, Domain Name System (DNS) server addresses, and Windows Internet Naming Service (WINS) server addresses.
Virtual IP (VIP) Address
A VIP address maps traffic received at one IP address to another address based on the destination port number in the packet header.
Logical path from a remote Open Shortest Path First (OSPF) area to the back-bone area.
Virtual Local Area Network (VLAN)
Logical rather than physical grouping of devices that constitutes a single broadcast domain. VLAN members are not identified by their location on a physical subnetwork, but rather, through the use of tags in the frame headers of their transmitted data. VLANs are described in the IEEE 802.1Q standard.
Virtual private network (VPN)
Is a network that uses a public telecommunication infrastructure, such as the Internet, to provide remote offices or individual users with secure access to their organization's network. A virtual private network can be contrasted with an expensive system of owned or leased lines that can only be used by one organization. The goal of a VPN is to provide the organization with the same capabilities, but at a much lower cost. VPN works by using the shared public infrastructure while maintaining privacy through security procedures and tunneling protocols such as the Layer Two Tunneling Protocol (L2TP). In effect, the protocols, by encrypting data at the sending end and decrypting it at the receiving end, send the data through a "tunnel" that cannot be "entered" by data that is not properly encrypted. An additional level of security involves encrypting not only the data, but also the originating and receiving network addresses.
Virtual Router
A functions as a router. It has its own interfaces and its own unicast and multicast routing tables. In ScreenOS, a security device supports two predefined virtual routers. This allows the security device to maintain two separate unicast and multicast routing tables and to conceal the routing information in one virtual router from the other. For example, the untrust-vr is typically used for communication with untrusted parties and does not contain any routing information for the protected zones.
Routing information for the protected zones is maintained by the trust-vr. Thus, no internal network information can be gathered by the covert extraction of routes from the untrust-vr.
0 comments:
Post a Comment