manual
8 9
Network Connectivity
Wireless LAN
Management
Services
Internet
UMTS
Multipurpose network infrastructure
Chain-store branches such as supermarkets are ideal candidates for network virtualization due to the amount
of applications that are used: Telephone calls with the main office and the enterprise-resource planning
system are connected directly to the server based there. Increasingly popular today are electronic displays for
advertising which are updated online by external service providers. Electronical payments using a cash card is
available just about everywhere. This requires online access to different banks. Instead of requiring dedicated
infrastructure for every application and different Internet access accounts, all of the data can be redirected
over VLANs and VPN.
Example: Data transfer from checkout
systems to EC clearing institutes
When using electronic payments with PIN entry, online contact to the
EC clearing institute is mandatory. An IPSec-based VPN ensures that
the connections between the check-outs and the ERP at the company
headquarters remain completely secure.
Example: Online updating of electronic
displays
External service providers can directly access, monitor, and update the
electronic displays by means of VLAN. At the same time, the network
owner can rest assured that the service providers have no access to any
other data in the company network.
Network virtualization with LANCOM
Example: A chain-store branch
SSIDs
VLANs
PPTPs
WLAN LAN WAN
IPsec VPN
Ethernet
i
Did you know?
Unlike EC card data, credit card data is transmitted un-
encrypted. To ensure that your personal details remain
protected despite this, major credit card companies have
established a security standard: PCI-DSS compliance. This
standard describes how networks should be designed
to ensure that data security is maintained. LANCOM routers
and managed switches comply with this specification and
they feature an end-to-end implementation of the TACACS+
protocol (AAA). Learn more about this subject in our tech
paper on PCI compliance at www.lancom.eu
PCI DSS Compliance
PCI DSS Compliance
It's all about having the right switch
Intelligent switches are required for network virtualization to function within the branch office. These switches
have to support VLAN and QoS – otherwise it will be unable to distribute and to prioritize data correctly in
the LAN. LANCOM switches can be administred remotely and offer comprehensive security functions. On top
of that, they can be flawlessly integrated into the entire network solution (e.g. monitoring via SNMP and
management via LANCOM Management System).
LANCOM GS-2326
LANCOM GS-2352
LANCOM 1781A-3G
VPN gateway
LANCOM 9100 VPN
LANCOM 1781A
VPN
VPNVPN
VPN
VPN
Hand-held
scanner
EC CLEARING
HOUSE
VLAN 5
Branch ofce
Regional main ofce
Content supplier
Digital signage system
Bank
Security company
ERP
Surveillance
VLAN 2
VLAN 3
VLAN 4
Connectivity for up to 1,000 stores *
Up to 64 separate applications over
the WAN connection (ARF)
Up to 256 active VLANs, 8 SSIDs
High availability from UMTS
backup, VRRP, and gateway clusters
* Expandable to several thousand
with additional VPN gateways
VLAN 5:
Electronic
cash
VLAN 4:
Checkout
VLAN 3:
PC network
VLAN 1
VLAN 6:
Hand-held scanner
inventory
LANCOM access points
Single or dual radio
(2.4/5 GHz)
VLAN 2:
Video surveillance
VLAN 1:
Digital signage
Display
The basis for complete network virtualization:
LANCOM routers and switches
LANCOM routers can manage multiple independent logical networks thanks to Advanced Routing and
Forwarding (ARF). These networks can be combined by using VLANs in the LAN and SSIDs in the wireless LAN.
Thanks to the implemented tunnel-in-tunnel technology, these virtual networks can even be operated between
locations through a VPN connection. This method encapsulates data from different VLANs into a single tunnel
and transmits them over the Internet via an IPSec tunnel: Making it possible to completely virtualize an entire
corporate network.
Digital Signage display
VLAN 6