Virtual Private Networking (VPN)

Hi all, I am new to the Java technology. I was wondering if the latest Java 2 SDK and the J2ME are capable of VPN'ing into remote servers? If so, please clarify what it is I need to look up API wise to do so. Please BE specific so that I don't research the wrong stuff. If not, then what other option do I have?
Please clarify. Thanks.

I think the general answer to your question is "No."
The reason is that "VPN" is a generic name for a number of possible technologies. I do not think that Java comes with a class which encapsulates the various different protocols used for VPN. The most generic protocol is the new "IPSEC" protocol that is becoming more prevalent. But, again, I don't think that Java comes with an IPSEC class that you can use to create a "VPN tunnel" to a remote system or LAN.
In general, a "VPN tunnel" would need to be created outside of Java. Your Java program could then talk to the remote site via the "VPN tunnel" using the standard TCP/IP capabilities of Java.

Similar Messages

  • Creating a virtual private network?

    I've been reading some articles recently about creating a virtual private network for security and privacy reasons. Is it easy and is it a good thing to do?
    One part mentioned possibly having to pay a subscription for this service with your service provider? Would I have to with sky?

    If you regularly have the need to remotely access another machine which is at a different geographic location, VPN is a great idea. It can be difficult to set up, and requires network hardware support. For example, you either need to have a VPN gateway device (such as a Netgear FVS114 - check for them on eBay), which acts as the VPN endpoint, or you need to run a VPN server on your Mac and your gateway must allow VPN passthrough traffic. I'd generally recommend the first option, although it can be more expensive.
    You also need VPN client software running on the Mac you use to access your network. I recommend the free IPSecuritas. There's also VPN Tracker, which is very user friendly but does come at a price.
    Matt

  • Virtual Private Network using JSP

    Sir tell me how to create a virtual private network in jsp using rmi to register for a new user and socket program to 1.send data(file and text)
    2.Recieve data (for a particular client).The server will monitor which all clients are loggined into the network and control all transactions between clients.I am using jakarta tomcat 5.0 as webserver and notepad as editor.
    Sir please help me....

    alan,
    Thank you for your reply.
    I apologize for misunderstanding. I should have phrased my question better.
    You wrote:
    "Load up each OS on the hardware and then add the software and then figure out which matrix you're looking for. In order to do this your application will need to be compiled for each OS assuming that it isn't something cross platform such as a Java application. Is it completion time, time on the network, load, memory consumption, or something else that you're looking to measure?"
    Although the application's own performance is extremely important, my question was not related to it.
    It's written in .NET 2.0, and it's not designed to work on non-Windows machines, or not even on Mono framework.
    I am asking about performance of virtual machines.
    For example, if I had 2 servers (not just one) with the same technical characteristics, and run several "guest" virtual machines (say, for example, 1 Windows Server 2003 + 1 Windows XP) in a virtual private network on VirtualBox on both of those servers...
    ...so, everything is exactly the same, EXCEPT the host OS on the two servers: Solaris vs. something else (Fedora, or Windows Server 2008, or whatever),
    my question is: would Solaris 10 provide better performance benchmark numbers, or would those numbers be the same as the other OS on the 2nd machine?
    The problem is, I have quite a bit of experience with running virtual machines on Windows hosts, but I am new to Solaris, and I am trying to figure out which OS I would be better off installing on the new machine, because that decision is not going to be easy to undo later.
    No "OS wars". Really. I do not have any allegiance to any particular OS.
    Thank you.
    Dmitriy

  • Broken Link - Firewall and Virtual Private Network Communication for Oracle

    The link for Firewall and Virtual Private Network Communication for Oracle Enterprise Manager on http://otn.oracle.com/products/oem/files/best_practices.html returns a 404 error. It is not pointing to the correct document

    This link is still broken !
    Can you please correct this ASAP ?
    Best regards, Yolanda
    Oracle HUB support services

  • Virtual Private Networking

    I've tried to research this subject before I posted, but I really haven't found any good explanation - I've had an icon at the top right of my screen since I've had my computer - it's for "VPN" - which I've basically ignored until today - I'm curious as to its function. Like I said - I tried to find out more about it, but every explanation is unclear to me. Can anyone tell me, very simply, what exactly is VPN?

    The name kind of says it all, but a practical example often helps.
    First, think of a private network as any local area network such as that used in an office, your home, etc. Everything on that local area network (LAN) is private, and protected from the internet by firewalls, NAT devices, etc.
    That's all well and good for people inside the office. However there are many cases where people outside the office would also benefit from access to the internal/private machines. For example, sales people might benefit from accessing the corporate database on product availability, client profile, etc., or maybe want access to a corporate file server or email server.
    One option is to open those services to the outside world, but you then run into issues with protecting the data from unwanted users - e.g. hackers trying to crack into the corporate database, download financial information, etc.
    It's possible to do using various authentication systems, encryption systems, etc., but you have to apply the same rules over and over again to every service that you want to be able to access remotely, and missing just one leaves your entire network vulnerable.
    Enter the VPN.
    The VPN extends the concept of the private LAN to specific remote systems. Remote users connected to the VPN (e.g. that sales guy on the road, the IT guy working from home, etc.) authenticate once to a VPN server and then appear to be in the LAN, just as if they were at a desk in the office.
    As far as all the internal servers are concerned, the user is local. He can do anything he'd be able to do in the office, including printing on office printers, accessing file servers, etc., without the need to specially configure each service, and without the need to open lots of holes in the corporate firewall.
    So the user on the VPN appears to be on the local network, but isn't - hence the 'Virtual' part of the equation.
    VPNs can be scaled to support anywhere from one or two users to thousands of users across multiple continents - it's not uncommon, for example, for multi-national corporations to have VPN connections between offices. That way anyone in any office can connect, securely and easily, with anyone else, without having to worry (too much) about where that resource is, or whether it's available outside of the office.
    Does that help?

  • Virtual Private Network Zones

    I posted this topic in zones [http://forum.java.sun.com/thread.jspa?threadID=5287549&tstart=0|http://forum.java.sun.com/thread.jspa?threadID=5287549&tstart=0]
    What I'm trying to do is set up a way to create zones with ip's in the private ip space 10.0.0.0 that do not communicate outside.
    After doing some more investigating it seems that is possible somehow without crossbow, but I'm not sure how.
    I only have one nic installed.
    Can I add a virtual ip address like rtls0:2 with ip address 10.x.y.z, add an entry in /etc/netmasks then add zones in that network?
    At this point I don't care if the zones can't communicate with the internet as long as they can communicate amongst themselves. I also want to make sure that packets in the 10.0.0.0 network don't leave the computer.
    I'd prefer to find a way to do it without putting the 10.x.y.z address on the actual rlts0 device if possible. What I want to make sure is that no packets in the 10.0.0.0 network leave the computer, and more importantly, none from outside the computer enter.

    One solution is to put a second NIC on your machine, then you can use precursor-to-crossbow IP Instances. The NIC will have to be GLDv3, though, like e1000g or bge or nge, however, unless you're running one of the very recent OpenSolaris builds.
    Once you create a unique-instance zone, you can have that net-10 interface be in its own TCP/IP stack.
    Hope this helps,
    Dan McD. - Solaris Engineering

  • Virtual Private Network

    We would like to use MS direct for our VPN and therefore, please advice whether MS professional will support the feature or we need to go for MS enterprise.

    If you are talking about using Direct Access as your VPN, then that requires Windows 7 Enterprise or Windows 8 Enterprise.
    http://technet.microsoft.com/en-us/windows/dn197886.aspx
    "What Windows 8 editions support DirectAccess?
    Using DirectAccess requires Windows 7 Enterprise or Windows 8 Enterprise. Some DirectAccess features are not available in Windows 7 Enterprise, requiring Windows 8 Enterprise to deploy them."
    . : | : . : | : . tim

  • Creating a virtual private network from OSX Leopard to Windows Vista

    Well as the title suggests, I need to be on the same VLAN with another user running Windows Vista. What solutions are there to accomplish this?
    (HamachiX stops responding. The HamachiX CLI (command line) makes me login without me knowing how to. I'm ultimately trying to have a VLAN for some online gaming, NOT transferring files.)
    Thanks so much!

    This issue is not resolved but is being closed due to lack of response.

  • How can I create a Virtual Private Nework on my MacBook Pro?

    Hello all,
    I have a MacBook Pro 17" with OS X 10.4.7. I need to install and run five instances of Apache2 and demonstration the websites without having to be connected to a network/Internet. My /etc/hosts file would look something like:
    192.168.21.1 www.local
    192.168.21.2 svn.local
    192.168.21.3 trac.local
    192.168.21.4 jsp.local
    192.168.21.5 cfmx.local
    Then I could just open up a browser and type www.local in the url locator.
    How would I setup a virtual network card where I can assign these IP addresses to it? Would I use the lo0 (loopback) for this?
    I also have Parallels installed so that I can run one or more other operating system along side Mac OS X like Windows XP Pro, Redhat, etc.
    Is there a way that I could create a virtual private network on my MacBook Pro and not have to be connected to any network?
    How would I do this?
    Thanks,
    Troy Simpson

    As it turns out this is exactly what I am looking for:
    http://forum.parallels.com/thread1877.html
    I want to create a Host-Only Network on my MacBook Pro. The Parallels software created a virtual Network Interface Card on the Host OS called en2. I just added aditional IP Address to this virtual Network Interface Card.
    Even if you do not use Parallels for Hosting Guest OS (Virtual Machines), it does create the Virtual Network Interface Card.
    Now I have 5 Web Servers on my MacBook Pro so that I can test various senerios and configurations.
    Troy Simpson

  • ASA 5505 VPN - how to access Two private networks

    Hello
    i have cisco 5505 and i confirgured a remote VPN clients.  here is my sceniro
    cisco switch 2950   ===  holds two private network 192.168.8.x  and 192.168.4.x
    vlan 2  outside interface -    Eth0/0       155.155.155.x
    Vlan 1 inside interface --       Eth 0/1    192.168.8.180
    VPN pool ip address  =  192.168.8.100 --110
    i drag i cable from my cisco switch and put in to Eth0/1. and i want to access this twor private networks 192.168.4.x and 192.168.8.x .
    now i can access to 192.168.8.x .
    but i can't access 192.168.4.x .. please can any one help me that.
    Regards
    Thomas

    configure a split tunnel list that contains the networks you want the client to access.
    Sent from Cisco Technical Support iPad App

  • Duplicate private networks over vpn !

    A customer is having the same private network as my company does, but i have to build a vpn between those 2 networks.
    Our site has a ASA5510 and the customer has a PIX 515e. How should i do this ?
    Many thanks for helping me.
    Gerard Schurink

    You could inspire yourself with this document
    http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a00800949f1.shtml

  • Using VPD (Virtual Private Database) with Discoverer for Dummies

    Firstly could you please excuse me for the title of the thread, but it’s all I could come up with. For those of you who are looking at me with a strange look of disgust, please view thread that started it all: BIS vs DBI vs Noetix .
    Otherwise I’m hoping to gain a greater understanding of how VPD can be used to enhance Discoverer and it’s performance. I've just read that :
    “Oracle 8i introduced the notion of a Virtual Private Database (VPD). A VPD offers Fine-Grained Access Control (FGAC) for secure separation of data. This ensures that users only have access to data that pertains to them. Using this option, one could even store multiple companies' data within the same schema, without them knowing about it.
    VPD configuration is done via the DBMS_RLS (Row Level Security) package. Select from SYS.V$VPD_POLICY to see existing VPD configuration.”
    With Regards to Discoverer, I would like to ask the following:
    -When would be best to use VPD in Discoverer?
    -Pro’s and Con’s of VPD?
    -Tips / Tricks?
    -and anything else Michael would like to add (I don’t believe there is a post limit, although this could change in the future)
    I've found a few handy links:
    http://www.adp-gmbh.ch/ora/security/vpd/index.html
    http://www.oracle.com/technology/oramag/oracle/04-mar/o24tech_security.html
    As Metalink support would say : I Looking forward to your ‘Positive’ comments. ;-)
    Lance

    Lance,
    You sure do raise some interesting questions here.
    I've noticed from some of your previous posts that you are using views to link Discoverer through to apps. I have found this very interesting document that may help with your queries; http://www.oracle.com/technology/deploy/security/oracle9ir2/pdf/VPD9ir2twp.pdf
    If you scroll down to the section "Additional VPD Capabilities" and read the following sub-topics, this might enable you to base your Discoverer reports on views that contain VPD policies.
    I trust "My Positive Comment" may help!!
    Merry Christmas
    Si ;-)
    P.s This also may come in handy if running 10g http://www.stanford.edu/dept/itss/docs/oracle/10g/network.101/b10773/apdvpoli.htm
    Message was edited by:
    Simon Pittaway

  • Certificate error when connecting to RemoteApp outside of private network

    I have a server running Windows Server 2012 R2. It is configured as an all-in-one RDS server - all roles are installed on it. We've configured it primarily to use an application as a RemoteApp - the application is hosted at a different site, and this RDS
    server is at that site. We have a site to site VPN set up, so that it is all a part of our domain. The issue I'm having seems related to the fact that our internal network is .local, but the certificate only has a single .com name, so that we can access it
    from the Internet.
    Everything works, though what I'm trying to clear up is a certificate error. When connecting to the RemoteApp from outside of our private network, we get the error "The server name on the certificate is incorrect." This occurs after entering
    credentials.  The public name of the server (rds.contoso.com) is different from the private name (server.contoso.local).  We can proceed through the error and connect (though we'd like to fix it).
    I implemented a fix that I found elsewhere to try to fix this.  This was to add a custom RDP setting like so:
    Set-RDSessionCollectionConfiguration –CollectionName QuickSessionCollection -CustomRdpProperty "use redirection server name:i:1`nalternate full address:s:rds.contoso.com"
    That seemed to make some progress, then we got another error.  I made a change to the RD RAP in RD Gateway Manager - by default, it allowed access to Domain Computers (which rds.contoso.com did not exist as a domain computer). I modified it to allow
    access to the rds.contoso.com name.
    I now receive a different error message and that's where I'm stuck.  The heading on the message is RemoteApp Disconnected.  The text of the error is 'Remote Desktop can't find the computer "rds.contoso.com".  This might mean that
    "rds.contoso.com" does not belong to the specified network.  Verify the computer name and domain that you are trying to connect to.'
    Any thoughts on what I can do next?  When I roll back the changes I've made, I'm again able to connect fine, I just have the certificate error again.

    Hi,
    1. For changing the published FQDN I recommend you use Set-RDPublishedName cmdlet instead setting a custom rdp property on the collection:
    Change published FQDN for Server 2012 or 2012 R2 RDS Deployment
    https://gallery.technet.microsoft.com/Change-published-FQDN-for-2a029b80
    2. As you mentioned before you need to edit the RD RAP so that the FQDN that you are using is permitted, or set it to Allow users to connect to any network resource.
    3. On your internal network (internal to the RDG), you need to create a DNS A record for the published FQDN (rds.contoso.com) that points to your server's private ip address. 
    I'm not sure how you have things configured right now in terms of network and DNS so it is tough to give you instructions on how to fix.  Let me explain a bit.  Normally with a VPN you would not need RD Gateway, although it is okay
    if you want to use it.  If you have things configured properly an external client will normally connect to the RDG using the FQDN specified for RDG, then the RDG will connect to the published FQDN for the RDS deployment.
    In your case these two FQDNs would be the same, only when the client does a DNS lookup it should get the ip address that you want users to connect to for the RDG whereas when the RDG does a DNS lookup it should get the private ip address of the server. 
    Exactly how you need to configure your DNS entries will depend on your VPN and networking configuration.
    Please give it a try using the information provided above and reply back here with your results and any further questions you may have.
    Thanks.
    -TP

  • Making a new private network.

    I want to build a network - private network. I have 80-90 sites with up to 14 hosts on each site. The hosts comunicate with a server. Not much trafic. Can I use a couple of 2924-XL-EN to connect the sites together? And from the switches a connection to another 2924 where I have the server?

    Instead of using a complete layer2 network design, I would start looking at Layer3 segmentation and fault isolation. If all 90 sites were connected with nothing but layer2 switches, you would have issues with STP convergance, broadcast storms, etc. Essentially, a single user with a bad nic or virus could take down the entire network. Depending on your requirements, you could do a hub-and-spoke design and have each site connect to a layer3 router at the hub of your design. From this you can provision subinterfaces per site and allow vlans per site. This would shrink the broadcast domain per site, and reduce the risk of a single site taking out the entire network. The layer3 device at the hub could provide inter-vlan routing to provide communication with all the sites. Or if distance is a factor, you could provision a lower end router per site (1710 or something) and have this router connect to a slightly higher end layer3 device (2800 or something depending on your traffic requirements). This would be a more scalable design and allow you to provide more services in the future. If you wanted to go all out with it, you could provision some kind of 2800 per site with a 3800 at the hub. Then you could run MPLS VPNs. Each site would have a router capable of label imposition and your at your hub, your router could function as a P router. You could also place your server into a central services VRF and do selective import and export of the VPN routes. This gives you the ablility to further segment your network (possibly start selling Internet access or service access to various customers) and still keep everything private.
    Hope this helps.

  • 2012R2 DC private network

    Disaster recovery scenario. 
    The domain controller has been backed up with proper VSS aware backup. 
    Restore the virtual machine to a target off-site datacenter. 
    Boot the VM and it is identified on a "Public/Private" network, hence it's not working at all. 
    Doesn't seem to matter what I do, it simply refuses to come online as "Domain Network". 
    My question is this: 
    How exactly does the NLS identify the domain network? 
    Things I tried already. 
    Disable/Enable NIC
    Set the awareness service to delayed start. 
    Manually removed all the network profiles from the registry, forcing a new identification. 
    Start up a 2003 DC before booting the 2012R2 DC. 
    Manually enable Network discovery on all network types. 
    Tried resetting the ipv4 stack with netsh. 
    The default gateway on the server does NOT reply to PING. 
    Is that necessary? 
    Any tips are greatly appreciated.

    In some instances, VMM cannot determine the network location by using NLA. This happens when a loopback adapter is used because it is not part a network, and on ESX Servers because the operating system on ESX Server hosts does not have an NLA feature. In
    these cases, you can manually enter the network location by selecting the
    Override discovered network location check box and then typing a name for the network location in the
    Network location box.
    https://technet.microsoft.com/en-us/library/ee236499.aspx
    Regards, Dave Patrick ....
    Microsoft Certified Professional
    Microsoft MVP [Windows]
    Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.

Maybe you are looking for