A Full-mesh Core Overlay Network increases secure connection speed and availability
For high performance, OpenVPN Cloud separates the data plane and its functions — data forwarding, encryption, security, policy enforcement — from the control plane, operating those functions by kernel-optimized software on bare-metal servers in our 30+ Points of Presence (PoPs). The control plane runs on the Cloud using the latest cloud-native technologies for policy management, event collection, and other configuration and authentication functions at a high scale. For maximum route diversity and low latency, the worldwide PoPs interconnect using full-mesh topology over high-speed internet access.
Full-Mesh is a network topology in which each node is interconnected with every other node within the same network. In network routing, Full-Mesh allows for increased redundancy due to the availability of multiple available routes, and increased performance and lower latency due there always being a direct route available between two nodes.
Point of presence (PoP) is a demarcation point or access point for two or more networks or communication devices belonging to different owners or entities sharing a connection. OpenVPN Cloud PoPs are in data centers worldwide and provide an access point for customers to connect their networks or devices.
OpenVPN Cloud creates a virtually dedicated worldwide private network exclusively for your use. This virtual overlay network is called a Wide-area Private Cloud (WPC). The WPC is identified with the Cloud ID. This network is dedicated to connecting your distributed applications, private networks, and users while providing the built-in security services for IDS/IPS, Content filtering, firewall, and access control. See, Wide-area Private Cloud (WPC).
OpenVPN Connect is a client application that establishes a tunnel to the WPC by connecting to one of OpenVPN Cloud PoPs. It can be used both as a Connector and as a client app on user devices for remote access. The main difference in use is that when used as a Connector the device or virtual machine it is installed on automatically makes a connection to a configured PoP and serves as a conduit to the WPC. This conduit a) allow inbound access from the WPC to applications and services on the device itself or on the network that the device is connected to; b) provides access to the WPC for all devices connected to the network that the Connector is installed on; c) provide an exit point for internet traffic sent to the WPC. This connection is meant to be always on and unattended (i.e. a person does not need to enter a username and password or other authentication information). When not used as a Connector, OpenVPN Connect app can be used for ZTNA by connecting to a PoP of the user’s choice with the use of credentials to identify the user.
Yes — to improve the redundancy and for OpenVPN Cloud to load-balance incoming traffic to your Network you can install multiple Connectors that can connect to multiple Regions or the same Region (PoP). To learn more, read User Guide - Using multiple connectors to increase reliability of remote access.
Split Tunnel is a configuration setting of the tunnel that connects the device to OpenVPN Cloud. It can be set to select what kind of traffic is sent through the tunnel. All traffic (even internet traffic) is sent through the tunnel when set to OFF. When set to ON, only specific traffic configured to be routed to OpenVPN Cloud enters the tunnel, and general internet traffic does not.
Connect to OpenVPN Cloud now with three free connections
OpenVPN helps you easily create a secure, virtualized, reliable network that ensures secure communications between your networks, applications, devices, and workforce.