| SSL VPN has become a primary technology which greatly reduces the cost of remote access.Based on secure encrpytion tachniques with SSL protocol,SSL VPN designates the application protocols such as HTTP,Telnet and FTP,and exchanges data between itself and TCP/IP protocol.Except from these,SSL VPN also provides data encryption,server authentication and selective client authentication.Generally,SSL VPN is applied to set up a proprietary tunnel between company headquarters and employees in business.Compared with the traditional VPN solution,SSL VPN can be easily achieved.Based on the existing SSL VPN, we analyze the secure performance of client and efficient performance of server. The kernel of this article is to give the solutions of improved SSL VPN around the two aspects, offering access authorization and secure transaction for end users' HTTP, client/server applications and file sharing, achieving high performance in huge concurrency access condition by using load balance technology in multiple SSL VPN servers and secure clients.The improved SSL VPN introduces load balancing proxy server and accomplishes dynamic load balance,which distributes clients'request to low balancing server to lighten the load balance of SSL VPN server and enhance the output of the whole system.We designes function interface to communicate between load balancing proxy server and SSL VPN servers.When SSL VPN servers collect performance information timely and transfer to load balancing proxy server which analyzes,compares and selects the best suitable SSL VPN proxy and transmits packets to it. On client, improved SSL VPN affords a method of name+password+certificate to ensure the validity of client and clears local track information to guarantee the security of client. |
PDF Full Text Request