Products | Support | Resources | Purchasing | Partners | News | Company | Contact us
PRODUCTS New NetPilot Range NetPilot Guardsman NetPilot Vanguard NetPilot GlobemasterLatest SSL VPN PlusSecureEnvoy Authentication IPSec VPNUTMUTM - McAfee FilteringToolsTestimonials WEBSITE HELP

Having difficulty viewing some documents?
click here

WEBSITES NetPilot.com NetPilot Partners Infodocs

 

More on NetPilot SSL VPN Plus from NeoAccel

 

TCP-over-TCP Tunneling

SSL VPN technologies tunnel private network traffic inside a second encrypted protocol for traversal over of the public Internet. This process has overhead but is compounded by the "TCP-over-TCP meltdown" which is inherent when encapsulating one protocol within another. Transmission control protocol (TCP) has various parameters (SYN, ACH, RTT) for setting retransmission times for the delivery of data from client to server in the event of packet loss.

However this repair and recover mechanism fails when encapsulated in a second TCP stream. If the encapsulating or Internet layer drops a packet (which is common even under ideal networking conditions) both TCP streams will attempt to correct the error and retransmit duplicate data. This exponentially queues up data transmissions and prevents the real private network data from promptly reaching its destination.

NeoAccel's patented ICAA & TSSL technology bypasses this fundamental problem of most SSL VPN technologies, accomplishing performance up to 30 times faster than many competitors.

 

Intelligent Connection Acceleration Architecture™ (ICAA™)

Conventional full-access SSL VPNs tunnel TCP/IP data in a second TCP/IP stack for encryption over the Internet. This results in application layer data being encapsulated twice in two separate TCP streams. When packet loss occurs which goes on even under optimal Internet conditions, a performance degrading effect called “TCP-over-TCP meltdown” happens. In essence two TCP instruments are correcting a single packet of IP data, undermining network throughput and causing connection timeouts. NeoAccel's patent-pending ICAA technology eliminates this TCP-over-TCP problem, ensuring optimal performance.

 

 

Transparent SSL Engine™ (TSSL™)

NeoAccel's TSSL engine provides tightly coupled SSL processing with network traffic. Our SSL engine encrypts and processes SSL connections at the kernel level, communicating directly with a system's TCP stack and SSL hardware accelerator. This enables optimal performance, by-passing overhead associated with most user-mode SSL VPN implementations. It also allows scalable performance of many hundreds of concurrent users without affecting response time.

 

 

 

 

Return to previous pagePrint this page

Case Studies

DOWNLOADS

PURCHASE NOW !