MPLS Compared with Frame Relay and Internet VPN

Frame Relay vs. VPN

VPN vs. SPN on non-Frame Relay system
Posting Guidelines Promoting, selling, recruiting, coursework and thesis posting is forbidden. I will leave a recommendation in the Cleanup topic area that this question be PAQ'd and pts refunded. ISDN is basically a circuit switched dial-up point-to-point service. Start learning today for free Move Your Career Forward with certification training in the latest technologies. These are three completely different technologies.

Difference between ISDN,Frame Relay,Site to SIte VPN, PPP,HDLC

Despite some stuff going over my head, that was very helpful. Hopefully a lot of this stuff will clear up when i go for the ccnp.

CCNP used to cover everything in the old days but they have focused on routing and switching now. Please enter a title. You can not post a blank message. Please type your message and try again. Oct 1, 3: This content has been marked as final.

Frame-relay has no security but is generally provided by a service provider. This has optional security.

Sorry for a confusing answers but it is a big subject. Isnt encryption a form of security? Authentication basically checks the data has not been changed.

Conwyn Despite some stuff going over my head, that was very helpful. Thank you for the explanation. Go to original post. So, again, what would you all reccomend Solutions Learn More Through Courses. Experts Exchange Solution brought to you by Enjoy your complimentary solution view. Get every solution instantly with Premium. Start your 7-day free trial.

I wear a lot of hats Why do you think VPN solutions are not as secure. The big security issue with IPsec is the quality of the authentication scheme. I suggest using a two-factor system such as SecurID or X. Can you be more specific about your definition of "SPN"? It is basically the poor man's frame relay I was trying to determine what might be the best way, for us It has been my experience that they are virtually one and the same, the only difference being the level of security from basically none all the way to 3DES IPSEC--all VPN's--and can be much more secure than frame-relay.

Frame Relay has lots of interesting attacks against it including social engineering of the Telco, attack on the Telco's control computers, and direct attack of the cloud network at the Frame level. And no, these are not theoretical attacks. They've all been done successfully.

If I remember my last Telco presentation session, the SPN stuff you're talking about is where the Telco runs "private"DSL to people's houses and hooks that into your Frame network on the back end. This is sometimes the case with Frame, but very seldom the case with SPN because of the multiple vendors that are usually involved even if they're multiple personalities of the same company.

If you are using Terminal Services, there is a very simple option to secure connectivity. Internet connections at your remote offices would allow users to access applications at the main site via Citrix, with the connection including login completely encrypted. The other advantage of using Metaframe is that the data never leaves your main network, only the screen shots, keyboard entry, and mouse clicks. Finally, supporting remote users over Metaframe with features like shadowing is much easier than supporting applications remotely.

This is all rather inexpensive too. Simple to configure, just some basic routes to the remote subnets required. You install it in 20 mins and forget about it.. We've switched almost every single client to netscreen's. I don't know that I'd go so far as to say that the Netscreen 5 is the "most secure" solution, but it's certainly pretty solid and reasonably priced.

I meant to say 3des with rotating keys is the most secure connection you can use legally for an internet tunnel. Rijndael promisses more usable key bits than 3des and much higher speeds, but it's not widely supported yet though I think the RFC's are now official standards.

Also there's the HMAC issue SHA-1 is now considered stronger than MD5.


Leave a Reply