Cisco OL-4015-08 User Manual page 675

VFR
VPI
VPDN
VPN
VPN connection
OL-4015-08
Virtual Fragment Reassembly. VFR enables IOS Firewall to dynamically create
ACLs to block IP fragments. IP fragments often do not contain enough
information for static ACLs to be able to filter them.
virtual path identifier. Identifies the virtual path used by an ATM connection.
virtual private dial-up network. A system that permits dial-in networks to exist
remotely to home networks, while giving the appearance of being directly
connected. VPDNs use L2TP and L2F to terminate the Layer 2 and higher parts
of the network connection at the home gateway, instead of the network access
server (NAS).
Virtual Private Network. Provides the same network connectivity for users over
a public infrastructure as they would have over a private network. VPNs enable
IP traffic to travel securely over a public TCP/IP network by encrypting all
traffic from one network to another. A VPN uses tunneling to encrypt all
information at the IP level.
A site-to-site VPN. A site-to-site VPN consists of a set of VPN connections
between peers, in which the defining attributes of each connection include the
following device configuration information:
- A connection name
- Optionally, an IKE policy and pre-shared key
- An IPSec peer
- A list of one or more remote subnets or hosts that will be protected
by the connection
- An IPSec rule that defines which traffic is to be encrypted.
- A list of transform sets that define how protected traffic is encrypted
- A list of the device network interfaces to which the connection is
applied
Cisco Router and Security Device Manager Version 2.2 User's Guide
Glossary
GL-33