Vpn Site To Site Là Gì

A site-to-site virtual private network (VPN) is a connection between two or more networks, such as a corporate network and a branch office network. Many organizations use site-to-site VPNs to leverage an mạng internet connection for private traffic as an alternative lớn using private MPLS circuits.

Bạn đang xem: Vpn site to site là gì

Site-to-site VPNs are frequently used by companies with multiple offices in different geographic locations that need lớn access & use the corporate network on an ongoing basis. With a site-to-site VPN, a company can securely connect its corporate network with its remote offices to communicate & chia sẻ resources with them as a single network.

Figure 1: Example of a site-to-site VPN

Site-to-site VPNs and remote access VPNs may sound similar, but they serve sầu entirely different purposes.

A site-to-site VPN
is a permanent connection designed khổng lồ function as an encrypted liên kết between offices (i.e., “sites”). This is typically set up as an IPsec network connection between networking equipment.A remote access VPN is a temporary connection between users và headquarters, typically used for access to data center applications. This connection could use IPsec, but it is also common to use an SSL VPN khổng lồ mix up a connection between a user’s endpoint và a VPN gateway.

Why Site-to-Site VPNs Are No Longer Enough

Companies have sầu traditionally used site-to-site VPNs khổng lồ connect their corporate network and remote branch offices in a hub-and-spoke topology. This approach works when a company has an in-house data center, highly sensitive applications or minimal bandwidth requirements. However, now that most companies have moved their applications & data khổng lồ the cloud and have sầu large di động workforces, it no longer makes sense for users to lớn have sầu to go through an in-house data center lớn get to lớn the cloud when they can instead go to lớn the cloud directly.

Xem thêm: Tất Cả Các Loại Rubik Trên Thế Giới, Cách Giải Các Loại Rubik

Consequently, companies need to lớn set up network topology with access lớn the cloud or data center applications. This is driving organizations to phối up network architectures that vì chưng not depkết thúc on bringing all traffic bachồng lớn headquarters.

SASE: A Modern Solution for Connecting Remote Offices

A more recent cybersecurity mã sản phẩm called a secure access service edge (SASE; pronounced “sassy”), delivers the networking and network security services companies need directly through a cloud infrastructure. Moreover, SASE offers multiple security capabilities, such as advanced threat prevention, credential theft prevention, web filtering, sandboxing, DNS security, data loss prevention (DLP) and others from one cloud-delivered platform.

This allows companies to lớn easily connect their remote offices; securely route traffic to lớn public or private clouds, software-as-a-service (SaaS) applications or the internet; và manage và control access.


Some of the benefits of using a SASE are that it allows companies to:

Provide branch offices và retail stores with access khổng lồ the cloud or the data center.Quickly identify users, devices and applications.Consistently apply security policies across multiple locations và enforce least-privileged access.Dramatically simplify their IT infrastructure và reduce costs since they can use a single cloud-based solution instead of buying and managing multiple point products.

Cliông xã here for more information about securing branch offices and retail stores.