Skip to main content
SpringerLink
Log in

Open Source Mobile VPNs over Converged All-IP Networks

  • Published:
Journal of Network and Systems Management Aims and scope Submit manuscript

Abstract

Virtual Private Networks (VPNs) are normally used for secured communications over the Internet. The VPNs have evolved significantly over the years, leading to a range of open-source and proprietary solutions. In Converged, all-IP networks terminal mobility introduces, however, new challenges that have so far been addressed only partially and via proprietary solutions. In this article we assess the level of maturity, the viability and performance achieved in mobile VPNs, based merely on open-source software. Our prototype MVPN is obtained by integrating IPv6, Mobile IPv6 and IPsec, i.e., the protocols that 3GPP envisions for all-IP, mobile and fixed networks. We perform a series of tests on a multi-access wireless network (WLAN, GPRS and UMTS), aimed at identifying the issues arising when mobility management (vertical and horizontal handover) is combined with different levels of network security. Tests led to the discovery of various results such as the flushing of routing tables in MIPv6 during handover. Our performance analysis is complemented with lessons learnt and recommendations.

This is a preview of subscription content, log in via an institution to check access.

Access this article

Log in via an institution

Price excludes VAT (USA)
Tax calculation will be finalised during checkout.

Instant access to the full article PDF.

Institutional subscriptions

Fig. 1
Fig. 2
Fig. 3
Fig. 4
Fig. 5
Fig. 6
Fig. 7
Fig. 8
Fig. 9
Fig. 10
Fig. 11
Fig. 12
Fig. 13
Fig. 14
Fig. 15

Similar content being viewed by others

References

  1. Khanvilkar, S., et al.: Virtual private networks: an overview with performance evaluation. IEEE Commun. Mag. 42(10), 146–154 (2004)

    Article  Google Scholar 

  2. Craig, S., et al.: Analysis of IPSec overheads for VPN servers. In: 1st IEEE ICNP Workshop on Secure Network Protocols, 2005. (NPSec), pp. 25–30 (2005)

  3. Berger, T.: Analysis of Current VPN Technologies. In: The First International Conference on Availability, Reliability and Security, 2006. ARES 2006, 8 pp (2006)

  4. Metz, C.: The latest in VPNs: part II. IEEE Internet Comput. 8(3), 60–65 (2004)

    Article  Google Scholar 

  5. Dong, H., et al.: Security research on mobile IP network handover. ISCIT 2005 1, 83–86 (2005)

    Google Scholar 

  6. Andrew Do-Sung, J., et al.: An IMS-based service platform for the next-generation wireless networks. IEEE Commun. Mag. 44(9), 88–95 (2006)

    Article  Google Scholar 

  7. Agarwal, A.K., et al.: An experimental study on wireless security protocols over mobile IP networks. In: 2004 IEEE 60th Vehicular Technology Conference, 2004. VTC2004-Fall, vol 7, pp. 5271–5275 (2004) VTC2004-Fall. 2004

  8. Zhen, Z.: Saving public addresses in mobile IP. ICN/ICONS/MCL 2006 127 (2006)

  9. Sujeong, C., et al.: Performance comparison of TCP traffic over mobile IPv4 and IPv6 networks and a mobile network deployment approach. CIT 469–473 (2005)

  10. Knight, P., et al.: Layer 2 and 3 virtual private networks: taxonomy, technology, and standardization efforts. IEEE Commun. Mag. 42(6), 124–131 (2004)

    Article  MathSciNet  Google Scholar 

  11. 3G Patnership Project TS 23.221––Architectural requirements (Release 7). (Last Updated March 2006)

  12. Johnson, D., et al. RFC––Mobility Support in IPv6. IETF RFC 3775 (2004)

  13. Celia, L., et al.: An enhanced IPSec for anonymous internet communication. Electro Inf. Technol. 2005 1–6 (2005)

  14. Kanda, M., et al.: USAGI IPv6 IPsec development for Linux. In: 2004 International Symposium on Applications and the Internet Workshops, 2004. SAINT 2004 Workshops, pp. 159–163 (2004)

  15. Tuominen, A., et al.: MIPL Mobile IPv6 for Linux in HUT campus network MediaPoli. Proceedings of Ottawa Linux Symposium (2001)

  16. The Click Modular Router Project. http://pdos.csail.mit.edu/click/ (last checked on the 31st of February 2007)

  17. Hu, X., Bi, Y., Huang, J., Song, J.: Study on unified under layer trigger mechanism for handover optimization in mobile IP networks. In: 2nd International Conference on Mobile Technology, Applications and Systems, pp. 1–6, Beijing University of Posts and Telecommunications, P. R. China (November 2005)

Download references

Acknowledgments

The equipment used to build the test-bed has been provided by Vodafone Group R&D, U.K who has also suggested the figures on typical GPRS/UMTS network conditions. Particular thanks go to N. Papadoglou, H. Zisimopoulos, and O. Gurleyen (all from Vodafone) who have provided feedback, suggestions, and insightful discussions during the whole project.

Author information

Authors and Affiliations

  1. Department of Electronic Systems Engineering, University of Essex, Colchester, CO4 3SQ, UK

    Antonio Liotta & Adetola Oredope

  2. Centre for Communication Systems Research, University of Surrey, Guildford, GU2 7XH, UK

    Daniel H. Tyrode-Goilo

Authors
  1. Antonio Liotta
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Daniel H. Tyrode-Goilo
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Adetola Oredope
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Antonio Liotta.

Rights and permissions

Reprints and permissions

About this article

Cite this article

Liotta, A., Tyrode-Goilo, D.H. & Oredope, A. Open Source Mobile VPNs over Converged All-IP Networks. J Netw Syst Manage 16, 163–181 (2008). https://doi.org/10.1007/s10922-007-9075-8

Download citation

  • Published:

  • Issue Date:

  • DOI: https://doi.org/10.1007/s10922-007-9075-8

Keywords

Search

Navigation