VPN technology refers to a service that makes use of public data network resources to construct virtual private network for enterprise. VPN contains two levels of meanings: First it is a virtual network, without fixed physical connection, established as user requires; VPN constructed on public data network will provide safety, reliability, and manageability as current enterprise private network. If the access mode of user is dialing mode, the network will be called as VPDN.

Unicom virtual private dial network (VPDN), adopting special network encryption and communication protocol, can help enterprise to construct secure virtual private network on public network. As mobile office becomes increasing, remote user needs to access enterprise internal network in a timely manner, Unicom VPDN meets the demand of those users on fast and safe accession of enterprise internal network. Unicom VPDN can provide the service of constructing private network connection through public network for floating employee, remote officer personnel, and remote small office. As a large telecommunication operator, Unicom has numerous access equipment, facilities, and management experience. Other enterprises may effectively use such equipment and facilities, save investment on access equipment, further make service develop toward the direction of professionalism and systematization.

？

Applicable Range

1.Users with scattered office place, branches in other places, and more mobile personnel, such as enterprise user and remote education user.
2.User with scattered personnel who need long-distance telecommunication and even international long-distance means to contact.
3.User requiring circuit secrecy and serviceability.

2.Advantages

1.Easy network management: provide uniform user name and password to manage internal users.
2.Easy posses super large network covering the whole country: Cover 221 cities in China.
3.Easy connection between branches or mobile office personnel about thousand kilometers away and company LAN: Advanced tunnel technology, exempting from the fear of leakage.
4.Easy to pay network service charge: Settle with Unicom head office uniformly.
5. Easy local access, exempt form high long-distance charge.

Technical Realization

VPDN system is composed of the following parts:
1.VPDN service carrier network, , i.e., 165 network;
2.National and provincial VPDN user authentication center and charging center;
3.Provincial city VPDN dialing access system, mainly composed of access server;
4. User system, including enterprise dialing user, enterprise head office gateway equipment, and enterprise internal network management system.

System Structure

As shown below:

？

1. VPDN national management center manages national VPDN service users, i.e., opening account, billing, and authentication of VPDN users are realized in national management center. The management center constructs a virtual management platform for different VPDN users by province. Provinces conduct charging management on respective users through this virtual management platform; VPDN users within province shall be managed by provincial center. That means the account, billing, authentication, etc. of users are completed by provincial center.
2. VPDN user enterprise gateway (LNS, as shown in the drawing below) is realized by the international router of enterprise network. User router not only completes network connection function, but also completes VPDN gateway function. Router may be CISCO 3640, 3660, 7204, etc. Those models of routers can accomplish above functions. Nevertheless, as router model upgrades, the service processing capability is also improved. Therefore, the selection of specific router shall be determined according to the service traffic and future development of user.
3. VPDN user must be equipped with enterprise internal network management system and complete internal user data generation, authentication of user identification, billing, and other functions. Enterprise may select enterprise-version RADIUS software.

Unicom VPDN Service Charge