Remote Access Pattern

Remote access provides the ability to securely log on to the network from a distant location through resources that are not managed by NIH. NIH personnel use remote access services when traveling or when working from home. CIT and IC network staff also use remote access to troubleshoot problems in the off hours. NIH business partners use remote access services to access certain data on NIH servers.

Dial-up remote access requires a computer, a modem and remote access software to allow the computer to dial into the network over a telephone line, or Public Switched Telephone Network (PSTN), and connect to the network. Remote access via a Virtual Private Network (VPN) creates encrypted tunnels over an existing Internet connection between remote users and the network, thus securing the communications. Internet access in the diagram below is obtained via an ISP account.

• This pattern can support centrally managed remote access services for NIH, which would result in cost savings due to reduced support and maintenance costs, including help desk
• Cost savings may be realized by reducing the number of remote access solutions that are deployed and managed at NIH.
• VPN is more cost-effective than 800 dial-up service
• VPN is more secure than dial-up services
• This design is scalable and robust
• Remote access users will achieve higher throughput speed by utilizing broadband capability in the VPN solution

• NIH will need to address the fact that it is difficult to obtain quality SLAs from ISPs for VPN remote access services
• Users have to coordinate the acquisition and implementation of their own Internet connection
• Users have to load and configure their own software