Friday 21 August 2020

Virtual router: what it is and why you need it

What is it service desk analyst job description

A virtual router (or virtual router) is a small virtual machine with special software. Its purpose is to route between a virtual private network (VPN) and the Internet. Actually, the operation of this VPN connection is provided by the virtual router.

We provide such a virtual machine to customers free of charge and manage it ourselves.

What is a virtual router for?

To begin with, let's consider in what ways you can connect a virtual server to the Internet:

1. The virtual server is connected directly to the Internet. In this case, directly on the virtual server itself, the network interface will have an IP address that is accessible from anywhere on the Internet. Usually these are addresses from such blocks:

193.151.89.0/24 (in Germany);

193.151.90.0/24 (in Germany);

193.151.91.0/24 (in Germany);

195.3.204.0/25 (in Ukraine);

195.3.206.64/26 (in Ukraine);

195.3.206.240/28 (in Ukraine).

In some cases, other IP addresses may be used. Note that this list is current at the time of publication of the article, however, it can and will change.

What features does this type of connection have? In this case, we do not filter traffic between the client's server and other machines on the Internet. The client regulates all access policies at the operating system level.

2. The virtual server is not connected directly to the Internet, but to a separate virtual private network that belongs to this client. These networks often have addresses from ranges that are provided in RFC1918:

10.0.0.0/8;

172.16.0.0/12;

192.168.0.0/16.

This list is also subject to change.

Thus, the server receives an address from this network to the interface, and it is the virtual router that provides routing between the private network and the Internet. Note that this only happens when the client wishes this routing to occur, since it is possible to create a private network without access to the Internet.

The advantage of this method is that the VPN allows you to set up a secure and more reliable connection to the virtual server.

How to set up the ability to connect from the Internet to a server on a private network

When connecting through a virtual router, client servers can connect to the Internet (although this can be disabled). But in order to configure the ability to connect from the Internet to a server that is located on a private network, you should already register policies for forwarding incoming connections. This can be done with our help or on your own. How to perform this procedure with our own hands, we told in a separate article . 

In this case, the network services that the client wants to make available will currently be available at one of the addresses from such blocks (although sometimes there may be others):

193.151.88.0/24 (in Germany);

195.3.205.0/24 (in Ukraine);

195.3.207.0/26 (in Ukraine).

When else come in handy for a virtual router and VPN

A virtual router and VPN will also be useful if the client needs to build secure VPN connections with remote sites or mobile users. We have already shared visual instructions on how to set up a site-to-site VPN in the cloud and a client-to-site VPN in the cloud . But you can read in detail about what happens to packets during connections inside the VPN tunnel between the user's office and the environment in the cloud, as well as when connecting outside the VPN tunnel, here .

No comments:

Post a Comment

Cisco Updates Certified Network Design Engineer Curriculum

Cisco has updated its CCDA® Associate Certification Preparation Program in Network Design. Updating curricula and exam requirements will ens...