EmbeddedVPN has appeared as a software needed for embedded devices which has opportunity to get Internet access. Deficiency of standard VPN solution based on PPP protocol and limitation which intrude PPP timers lead to another solution which will not use Point to Point protocol. Observation of behaviour network firewalls in GPRS networks lead to EmbeddedVPN solution. For the windows implementation was used open source from sourceforge.net mainly openvpn and TUN/TAP driver .
Embedded VPN clients have own software which is not same as a windows but has power to communicate with windows server and windows client. EmbeddedVPN does not use any specific wrapper protocol over encrypted data. EmbeddedVPN does not include OpenSSL and any SSL functionality. It allows non encrypted tunnels in parallel with encrypted tunnel which use AES and Blowfish encryption. Server accept requests from embedded devices for non encrypted and requests for encrypted tunnels in the same VPN session. Only ping commands from the client side is something what is non standard. Clients use ping command for keeping alive socket in the firewall and for checking presence of VPN server.
Software was idea one Dipl. Engineer of Electronics whom wanted to allow embedded devices to communicate with Operation and Maintenance Centre placed on Internet with global IP address. Devices distributed around the world have attached to different packet data networks and together connected to the global OMC. Regarding the available memory in the devices, they different encryption mode. Authentication is based on GSM solution where GSM A1 and A3 algorithms have been replaced with widespread available CHAP MD5.
Plenty embedded OS does not have open TCP/IP stack and developers cannot control timers on the low levels of OSI layers. From that reason EmbeddedVPN uses virtual Ethernet on a Layer 2. Virtual Ethernet can be implemented and as TAP driver but it is not necessary. TUN driver is supported too but embedded devices seldom support the same.
|[Home] [About] [Software] [Configuration] [Contact]|