83 VPN ConfigurationChapter 8VPN Configuration8.1 OverviewVirtual Private Networks are an efficient and cost-saving way to use the internet as a transportalternative to dedicated lines or dial-up RAS overcoming the security risks of internet communications.There are two well-established technologies for data encryption: IPSec and SSL (Secure SocketLayer).Most VPN implementations rely solely on IPSec, which has several disadvantages in modern networktopologies. Barracuda NG VPN has incorporated both technology standards and hence improves theVPN connectivity substantially.Barracuda Networks provides two types of VPN client licenses:• Barracuda NG VPN Client• Barracuda NG SSL VPN and NAC8.2 Facts and Figures• VPN LicensingThe Barracuda NG VPN Client license is included with every appliance. On box appliances, it allows forunlimited users, while on virtual appliances it is limited to the virtual appliance’s capacity.Fig. 8–1 Structure of a VPN tunnelFor detailed information concerning the different features of the two licenses, have a look at 8.2 Facts and Figures,page 83.HQ LANNGFirewallNGVPN clientDestinationIP Address=DSTServer TunnelIP Address=VPN ServerClient IPAddress=PeerVPN clientIP Address=Source