Wide Area Network
Wide Area Network
WAN acronym
IPSec Tunnel, GRE, IPsec VTI
3 Site to Site VPN configuration options
Asynchronous Transfer Mode
ATM acronym
customer edge
CE acronym
Challenge Handshake Authentication Protocol
CHAP acronym
cHDLC
Cisco proprietary version of HDLC
Data Communications Equipment
DCE acronym
Dynamic Multipoint VPN
DMVPN
Data Terminal Equipment
DTE acronym
2 Mbps
E1 lines support data transfer rates of up to:
8 Mbps
E2 lines support data transfer rates of up to:
34 Mbps
E3 lines support data transfer rates of up to:
140 Mbps
E4 lines support data transfer rates of up to:
Generic Routing Encapsulation
GRE acronym
High-level Data Link Controller
HDLC acronym
IPsec Virtual Tunnel Interface
IPsec VTI acronym
Integrated Services Digital Network
ISDN acronym
Metropolitan Area Network
MAN acronym
Multilink PPP
MLP acronym
Multi Protocol Label Switching
MPLS acronym
PE, CE, P
MPLS uses these three types of routers
provider router
P router acronym
Password Authentication Protocol
PAP acronym
provider edge
PE acronym
PPP Multilink Link Fragmentation and Interleaving
PPP Multilink LFI acronym
Point to Point Protocol
PPP acronym
Point to Point Protocol over Ethernet
PPPOE acronym
Public Switched Telephone Network
PSTN acronym
PPPOE
This is the standard for connecting home computers to an ISP via DSL or broadband cable; this is also a backup for corporations for redundancy
GRE, IPsec Tunnel
Site to Site VPN configuration needs these two options in tandem to create a tunnel and to enable multicast
1.544 Mbps
T1 lines support data transfer rates of up to:
6 Mbps
T2 lines support data transfer rates of up to:
45 Mbps
T3 lines support data transfer rates of up to:
275 Mbps
T4 lines support data transfer rates of up to:
DTE
This is the customer side of a serial connections; stands for data terminal equipment and can be any device that stores or generates data
MPLS
This primary WAN connection option uses a shared core infrastructure at the service provider
DSL, cable, wireless
These 3 are less expensive options that can be used at home or in small offices
HDLC, PPP, Frame Relay
These are 3 layer 2 protocols that use serial point-to-point links
ISDN, PSTN, Frame Relay, ATM, X.25
These are legacy WAN connectivity Options
DCE
This is the service provider side of a serial connection; stands for data communication equipment; these devices control the speed of data over networks, convert signals from cables to wireless, check for corrupted data, and route data to its destination
PAP, CHAP
These two can be used to authenticate PPP sessions
IPsec VTI
This Cisco proprietary VPN config creates a tunnel and supports multicast
PPP Multilink LFI
This allows a router to chop big frames into smaller fragments so that smaller, delay sensitive packets can be sent between them
clock rate
This controls the actual speed a link runs at
GRE
This creates a virtual tunnel between two routers and packets are sent through the tunnel; this needs IPSec to create VPN otherwise its not private
MLP
This groups multiple physical PPP links together into a single logical bundle with a single IP address on either side; aggregates the total bandwidth together and provides redundancy and load balancing
Group Encrypted Transport VPN
This is a Cisco proprietary Site to Site VPN configuration; scalable centralised policy for VPN over non-public infrastructure
DMVPN
This is a Cisco proprietary Site to Site VPN configuration; scalable simple hub and spoke style
FlexVPN
This is a Cisco proprietary Site to Site VPN configuration; similar to DMVPN but newer
leased line
This is a dedicated physical connection between two hosts; it has fixed reserved bandwidth which isn't shared; same bandwidth for uploads and downloads; typically leased from a provider
WAN
This is a geographically distributed type of network that connects multiple LANs together
MAN
This is a type of network that connects computers and other devices in a geographic area larger than a LAN but smaller than a WAN
LAN
This is a type of network that connects computers and other devices in a relatively small area, typically a single building or a group of buildings
CHAP
This is more secure than PAP
satellite
This primary WAN option is expensive and gives low bandwidth, but it may be the only option in hard to reach areas
VPN
This provides a virtual tunnel between private networks across a shared public network such as the internet; traffic is encrypted and only readable by the authorized users on both sides; data can be shared as if they were connected
Hub and spoke
This topology is also known as a Star Topology; all locations go through one central location; does create a single point of failure
remote access VPN
This type of VPN has connections that are between a router or firewall in the office and VPN software installed on an individual user's device; can access VPN from anywhere with internet; usually SSL encryption
site to site VPN
This type of VPN has connections that are terminated on a router or a firewall in each office
leased line
This type of WAN uses a serial connection which requires the correct physical interface card in the router
Redundant Hub and Spoke
Topology that adds an extra hub; higher cost and suboptimal traffic flow; removes single point of failure and has centralised security policy
Full Mesh
Topology that has every office connected to every office; optimal traffic flow; high complexity and cost
Partial Mesh
Topology where most devices are connected to each other but not all; ones that aren't have to connect to others by going through others that are connected
VPLS, VPWS
Two Layer 2 MPLS VPN terms
Virtual Private LAN Service
VPLS acronym; point to multipoint service
virtual private network
VPN acronym
Virtual PseudoWire Service
VPWS acronym; point to point service
MPLS
WAN connectivity option which puts traffic from multiple customers over a shared network making it technically a VPN
1.544Mbp
default bandwidth on a serial interface
leased line, satellite, MPLS
the 3 primary WAN connectivity options
