ip vpn presentation
TRANSCRIPT
![Page 1: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/1.jpg)
© 2010 Colt Technology Services Group Limited. All rights reserved.
Colt IP VPN Services
![Page 2: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/2.jpg)
2
Agenda
An introduction to IP VPN
Colt IP VPN
Hybrid Networking
Workforce Mobility
Summary
![Page 3: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/3.jpg)
3
Drivers behind IP VPN adoption
Rationalisation
Cost
reduction
Convergence
Remote
users
IP
VPN
![Page 4: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/4.jpg)
4
Colt IP VPN – Business value
Management: Focus on core business
while Colt manages your network
Agility: Respond rapidly to changes in business
such as mergers, relocation or cost rationalisation
Performance: Enable business applications to run more
efficiently and become better at meeting customer needs
Security: Keep your data secure and meet compliance regulations
Resilience: Reduce risk of network failures that harm your business
![Page 5: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/5.jpg)
© 2010 Colt Technology Services Group Limited. All rights reserved.
Colt IP VPN
![Page 6: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/6.jpg)
6
Core technical specifications
Colt IP VPN Plus
Colt IP VPN Access
Transport technology MPLS
Managed router Yes No
Protocols IPv4
Service bandwidth 64kbps to 10Gbps
Class of Service 5
Routing protocols RIP, BGP, OSPF, EIGRP, Static
Data encryption 3DES (an option if required)
Multi VPN Yes No
Customer interface Ethernet 10/100BASE-T, 1000 Base-F, 10G Base-F
or wires only for Colt IP VPN Access
![Page 7: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/7.jpg)
7
Bandwidth options
• Granular options up to 10Gbps
• Speed to match your business needs
• Easy to upgrade
Mbps
256kbps
512kbps
4
5
6
7
8
9
10
12
15
20
25
30
34
35
40
45
50
60
70
80
90
100
110
12
0
130
140
150
155 200
300
400
500
600
700
800
900
1,0
00
2
3
1
1.5
0
100
200
300
400
500
600
700
800
900
1,000
10,000
10,0
00
![Page 8: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/8.jpg)
8
Public Internet Fixed and wireless
remote users
Partner networks
Off-Net (Ethernet or leased lines)
Wholesale DSL (wDSL)
Network access
Colt network
Colt SDH based fibre rings
Colt SDSL and EFM (Ethernet in the First Mile)
3G PDA connected to the public Internet
![Page 9: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/9.jpg)
9
Colt countries
Coverage via Global MPLS NNI
Coverage via long-lining
Coverage on individual base
*Indicative coverage only - please check with presales connectivity
Global MPLS NNI indicative coverage
![Page 10: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/10.jpg)
10
Remote fixed access
Where no commercially attractive
access circuits are available,
remote fixed access provides:
• Colt managed CPE router installed
on any public Internet access
• Secure IPsec tunnel setup from Colt
managed remote CPE to Colt network
ingress point
• Includes installation, full management,
peering bandwidth and service
gateway
Public Internet
Colt MPLS
IPsec tunnel terminator
IPsec tunnel
Office
CPE
CNG
![Page 11: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/11.jpg)
11
Centralised Network Gateway (CNG)
Multiservice IP infrastructure
from a centralised network
function
Current modules:
• Internet access
• IPsec termination
• Breakout to a dedicated or a
virtual Firewall
Pick and choose functionality
Colt
MPLS network
Public Internet
CNG
CNG
CPE
CPE
CPE
![Page 12: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/12.jpg)
12
End-to-end management*
Fully pro-actively managed end-to-end network*
* Excludes Colt IP VPN Access which is a service without managed CPE router at your site
Colt or partner network
Colt network
Customer
LAN
Colt NOC
MPLS enabled IP network
Colt managed CPE router
Customer
LAN
Colt managed
CPE router
CPE CPE
![Page 13: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/13.jpg)
13
Security
Customer’s
IP VPN
Separate address space per VPN
Inherent separate routing
instances in MPLS
MPLS core infrastructure
is invisible to outside world
MPLS label spoofing impossible
by filtering on physical ports
IPsec over MPLS
available as an option
Misdirected messages
Label spoofing
Intrusions
Denial of Service (DoS) attacks
Firewall to protect the
breakout to Internet
![Page 14: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/14.jpg)
14
Tiered Service Level Agreements (SLA)
Service assurance Service credits
Target Time to Repair (TTTR)
Service availability
Packet loss
Jitter level
Round trip delay
Service delivery Target lead time for...
Provisioning of initial network
Modifications
Guaranteed Quality of Service (QoS)
![Page 15: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/15.jpg)
15
Enhanced availability
Dual entry
ISDN backup
DSL backup
Dual access Two Colt managed CPEs on two access circuits running a Virtual
Router Redundancy Protocol (VRRP) with automatic failover
Additional Colt managed CPE router with automatic
failover to DSL backup service
Fully inclusive or partially inclusive ISDN Backup Service
with automatic failover
Dual fibre entry into buildings with self healing rings >
>
>
>
Internet backup Additional Colt managed CPE router with automatic
failover to Internet backup service >
Wireless backup 3G wireless backup access to the IP VPN when the primary
Colt IP VPN access circuit is disrupted >
![Page 16: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/16.jpg)
16
Options
Colt IP VPN
Plus
Colt IP VPN
Access
Global MPLS
Class of Service
Application aware networking * *
Multi VPN
DHCP server / relay
Multicast
Ingress prioritisation
Private IP address space
LFI for sub 1Mbps
Network-based Internet access
Online reporting
* New feature due May 2010
![Page 17: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/17.jpg)
17
Class of Service (CoS)
Time
Bandwidth Traffic shaping
Premium traffic
Standard traffic
Premium
Business 1
Business 2
Business 3
Standard
+/- Voice
Video
Web access
File access
Pri
ori
ty
Colt
network
+/-
+/-
+/-
+/-
Class of Service Traffic classification
Customer
network
Jitter, latency and packet loss sensitive applications
Internal file server traffic
Latency and packet loss sensitive applications
None time-sensitive data
Internet traffic
![Page 18: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/18.jpg)
18
Application Aware Networking (AAN)
• Moving towards guaranteed
application performance
• Visualisation of the
applications running over the
IP VPN
• Optimisation by applying
application depending Class of
Service with fine granularity
• Protocol acceleration, including
TCP timer tuning
• Application reporting
Application
Aware
Networking
![Page 19: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/19.jpg)
19
Multi VPN
Multiple extranets over the same
VPN network
Implementing separate logical VPNs
over one common physical VPN
infrastructure. Every site can then
participate or not in a logical VPN.
VPN A
VPN B
VPN B
Colt managed CPE router
Customer LAN Colt
MPLS network
Logical circuits
CPE
CPE
CPE
CPE
CPE
![Page 20: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/20.jpg)
20
Network based Internet access
• Delivered via the Centralised Network
Gateway (CNG)
• Central delivery of Internet access used
by all sites connected to the IP VPN
• Available to all Colt IP VPN sites
irrespective of access circuit or
technology
• Support for either customer or
Colt managed firewall CPE
CPE
CPE
Colt
MPLS network
Public Internet
CNG
![Page 21: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/21.jpg)
21
Enhanced online reporting
Silver
Gold
Throughput Availability Latency Packet loss
Router
configuration Events log Service status
Jitter
Silver +
![Page 22: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/22.jpg)
© 2010 Colt Technology Services Group Limited. All rights reserved.
Hybrid Networking
![Page 23: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/23.jpg)
23
HQ
Data Centres
Branches
Data Centres
• Business Critical Applications, e.g. ERP (SAP,
Oracle), Virtual Desktop (Citrix) and
Collaboration (Sharepoint)
• More and more Centralised and Virtualised
• Strong availability requirements drive the need
for data replication and migration of virtual
machines
• Need for a few high-speed low-latency point-to-
point interconnections for traffic predictability
Business-critical Applications
• Business Critical users, whose productivity is
critical for the business
• Strong performance requirements to support the
business, avoid discomfort among the
employees about the quality experienced and
reduce the complaints to the IT department
• Need for a high number of low-speed any-to-any
interconnections, with control and commitment
over traffic and application performance
Business-critical Users
![Page 24: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/24.jpg)
24
Data WAN Evolution: Hybrid Networks
24
IP/MPLS VPN Ethernet
VPN Hybrid
Hundreds of sites
Multiple CoS
Traffic Prioritization
Feature rich
Coverage
Customer IP
control
High bandwidth
Low-latency
Data Centre interconnection
HQ interconnection
Migration from legacy
Build unique IP VPN
Managed IP communications
Current Analysis: Global Data WAN Services: Trends and Market Leaders, October 2010
Multi-protocol
Plug and play
![Page 25: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/25.jpg)
25
MPLS based
IP VPN
Scenario
Example:
• 1 headquarters
• 2 datacentres
• 20 branch sites
Data Centre
HQ
Data Centre
Branches
![Page 26: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/26.jpg)
26
Ethernet 1G +
CPE Solutions MPLS based
IP VPN
Scenario – a hard choice?
![Page 27: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/27.jpg)
27
MPLS based
IP VPN
No need to make a hard choice between
CPE solutions and IP VPN.
Scenario – hybrid networking
Ethernet 1G +
CPE Solutions
![Page 28: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/28.jpg)
© 2010 Colt Technology Services Group Limited. All rights reserved.
Workforce Mobility
![Page 29: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/29.jpg)
29
Workforce Mobility
Workforce Mobility simplifies and manages mobile connectivity and provides:
• End-user access to the corporate network and applications from virtually
anywhere via WiFi, 3G (UK only), dial-up and home
• One software application to manage all end-user remote connections
• Highly customizable service configuration (policies and integration)
• Unlimited use of global broadband on laptops and handhelds
• Secured transport of data with user authentication
• Scalable solution for enterprises with few to thousands of mobile workers
• Fully integrated with all the benefits of the Colt IP VPN portfolio
• Independence of Mobile Network Operators
• Fixed monthly charges per user/month (inclusive use of multiple devices)
![Page 30: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/30.jpg)
30
Workforce Mobility - User Experience
Start laptop with iPass client
Establish encrypted tunnel
Best access presented
Connect to Internet
1 2 3 4
![Page 31: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/31.jpg)
31
Workforce Mobility - options overview
Encryption options
Options for Internet access at end-user location
IP VPN Mobility (Workforce Mobility)
Authentication options
by Colt using iPass (Full) by Customer (Partial)
Bundle A Bundle B
Access
Security
![Page 32: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/32.jpg)
32
Benefits for the enterprise and users at a glance
Proven and Reliable
One bill Admin Portal
Predictable cost
Integration of customer 3G
solution
Largest WiFi network in the
world
Easy and fast to use
Higher
productivity
Secured
transport
End-user Business IT department
Colt provides complete solution
Always access to corporate network
One application for all remote access
![Page 33: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/33.jpg)
© 2010 Colt Technology Services Group Limited. All rights reserved.
Thank you
www.Colt.net
![Page 34: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/34.jpg)
34 © 2010 Colt Telecom Group Limited. All rights reserved.
Appendix
![Page 35: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/35.jpg)
35
Colt IP VPN dual entry
• SDH self-healing rings with 50ms
protection switching
• Dual fibre entry into the building
Colt MPLS
SDH+ SINGLE fibre entry
SDH+ DUAL fibre entry
![Page 36: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/36.jpg)
36
Colt IP VPN ISDN backup
• Fully inclusive or partially inclusive ISDN
backup service
(Colt or customer has responsibility for
ISDN line provision and associated
charges)
• Dial around and through the network
• Automatic switching between primary
access line and ISDN line
• Support for BRI/PRIs
(from one BRI up to four BRI and one PRI)
ISDN
Colt MPLS
Primary access circuit ISDN
backup circuit
CPE
![Page 37: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/37.jpg)
37
Colt IP VPN DSL backup
• Two Colt managed CPE routers
provides hardware redundancy
• Automated failover to DSL if primary
access circuit goes down
Colt DSL
Colt MPLS
Primary access circuit
DSL backup circuit
CPE CPE
![Page 38: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/38.jpg)
38
Colt IP VPN dual access
• Two Colt managed CPEs running
VRRP
• Two access circuits
• Automated failover from primary to
secondary circuits
Colt MPLS
VRRP CPE CPE
![Page 39: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/39.jpg)
39
Colt IP VPN Internet backup
Resiliency outside of Colt countries, or
where ISDN and DSL services are not
feasible
Colt MPLS
Primary access circuit
Public Internet
Colt managed CPE router
Location of remote site
Internet access delivered by:
Colt country
Colt Customer
Non-Colt country
Colt Colt
IPsec tunnel
CPE CPE
CNG
![Page 40: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/40.jpg)
40
Colt IP VPN wireless backup
A truly redundant and resilient
access method for standard wired
services
• One box CPE solution, installed by
Colt
• GPRS, EDGE, HSDPA or UMTS
wireless interfaces
• Based on 3G wireless Internet
(not a 3G wireless private service)
• IPsec tunnel terminated on the CNG Colt
MPLS
Primary access circuit
Public Internet
3G wireless transmission*
*Customer provided 3G wireless Internet service
CPE
CNG
![Page 41: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/41.jpg)
41
![Page 42: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/42.jpg)
42
![Page 43: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/43.jpg)
43
![Page 44: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/44.jpg)
44
![Page 45: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/45.jpg)
45
![Page 46: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/46.jpg)
46
![Page 47: IP VPN presentation](https://reader030.vdocuments.us/reader030/viewer/2022021500/58587bb51a28ab6e328dd895/html5/thumbnails/47.jpg)
47