A certificate is a digital document that contains a network user's public key of digital signature. A certificate is used for vouching the authenticity of a network user's digital signature and for authenticating the certificate's owner. In ViPNet OFFICE, a certificate is issued by ViPNet Manager and signed by digital signature by the ViPNet Manager administrator. Certificates of public signature keys are formed for the ViPNet Manager administrator and users. In addition, you can specify a time period for which an administrator certificate is valid (no less 5 years). The time period for which the ViPNet user certificate is valid is constant and equal to three years.
Certificate specifications and format correspond to the standard X.509, version 3.
A computer with an installed version of ViPNet Client software.
A secure communication channel (encrypted connection) between two network nodes.
A computer with an installed version of ViPNet Coordinator software.
A firewall or other device with NAT (Network Address Translation) translates internal addresses in addresses accessible from external network. ViPNet software provides three types of NAT devices:
All IP addresses, except IP addresses that are reserved for use in local networks with private IP addresses.
If any changes are made to the ViPNet network structure by the ViPNet Manager administrator, link files and keys for ViPNet nodes are changed. The administrator must then send the new keys (called a key sets update) to the ViPNet nodes.
A key set is a file (with .dst extension) that enables you to start ViPNet software on a network node. Keys sets are created for each node using ViPNet Manager.
A license defines the maximum number of coordinators, the number of clients per coordinator, and the maximum number of unprotected addresses that can be tunneled through a coordinator. The license is bound to the ViPNet OFFICE or ViPNet TUNNEL product lines and is included with the serial number you receive on purchase. The license can be upgraded.
A network node with ViPNet Client software that the VIPNet Manager administrator has nominated as manager. From this node, an administrator can send keys and software updates to network nodes.
A client, coordinator or network node tunnelled by a coordinator.
A password with administrator rights used to enter ViPNet Client or ViPNet Coordinator to retrieve additional settings for ViPNet applications.
The following three IP ranges are reserved by the Internet Assigned Numbers Authority (IANA) according to RFC 1918 - Address Allocation for Private Internets: 10.0.0.0-10.255.255.255, 172.16.0.0-172.31.255.255 and 192.168.0.0-192.168.255.255. These IP addresses are not routable over the Internet, so they will not conflict with other sites using these ranges. To access the Internet with these ranges, you need a Network Address Translation (NAT) device.
Servers located on a protected computer, for example, a web server, mail server or FTP server.
A network node or tunneled computer.
A server located on a protected computer.
A server located on an unprotected (open) computer.
The area on the right side of the taskbar on the Windows interface is used to display the status of various functions, such as speaker volume and modem transmission.
A data packet generated by the Business Mail or File Exchange applications. The packet contains a header with parameters that are needed for routing it in the ViPNet network.
A computer that has its traffic tunneled by a ViPNet coordinator.
A computer on which ViPNet software is not installed and which is not a tunneling computer.
An individual user password is required to log on to ViPNet software.
The user password is generated using the first x (number of) characters from each word of a randomly generated password phrase.
This phrase is created from one of the available languages (English, German or Russian). It is a grammatically correct sentence, created from random words from special dictionary files.
The number of words in a phrase can be either three or four; however it is also possible to create a password from two password phrases (six or eight words).
In the following example, the password 'stradiveterrempt' is generated from an English phrase consisting of four words: strange diversant terrorizes emptiness.
The person responsible for creating and configuring the ViPNet network. Also the person who creates and updates link files and key information for network nodes. This manual is intended for the ViPNet Manager administrator.
The password is used to enter ViPNet Manager.
A ViPNet network combines all the network nodes of a specific network. Each client is registered on a certain coordinator. You can choose the connection types between all network nodes while creating the network via ViPNet Manager. Afterwards, you can change the links. There are obligatory links between coordinators and also between a coordinator and its clients. You cannot remove these links. If the license permits the tunneling of IP addresses, these IP addresses will be automatically shared between the coordinators during the initial configuring the ViPNet network. Afterwards, you can modify the maximum number of connections tunneled by a coordinator at the same time.
To aid in the centralized sending of updates, one client is assigned as manager. During the initial configuring the ViPNet network, the first client of the first coordinator is automatically assigned the manager role. Afterwards, you can change the assignment to another client.
If you do not want the ViPNet Manager client to be visible to ViPNet applications (Monitor, Business Mail) on other nodes, you do not need to link it to those nodes. All necessary key information for providing the connection between ViPNet nodes and network management will be created automatically, irrespective of the presence of links.
It's necessary for the computer with ViPNet Manager to belong to the administrator. The administrator's computer controls the ViPNet network. If you have added new nodes to your ViPNet network, the ViPNet Client on the ViPNet Manager workstation must receive key set updates before you send updates to the other network nodes (such an update of keys is done automatically by default).
The centralized process of upgrading ViPNet software on ViPNet network nodes. The process is done by the ViPNet Manager administrator.
A user of ViPNet Client or ViPNet Coordinator.
© 2007 Infotecs