BN305 - Virtual Private Network

Credit Points: 15

Prerequisite: BN203 Network Security 1

Co-requisite: N/A

Workload: 48 contact hours

Campus: Melbourne, Sydney

Aims & Objectives

This is a sixth trimester core unit out of a total of 24 units in the Bachelor of Networking (BNet). This unit addresses the BNet course learning outcomes and complements other courses in a related field by developing students’ specialised knowledge in virtual private networks and applying critical skills in networking equipment such as router, switch and server. For further course information refer to: This unit is part of the AQF Level 7 (BNet) course.

This subject provides students with the knowledge and advanced professional skills to manage and maintain VPN. It also provides students with the knowledge and skills to deal with both, MPLS and MPLS VPN architectures. Students will also obtain further knowledge and experience in building, implementing and managing VPN architecture and security.

This unit will cover the following topics:

  1. Overview of VPN in security context, its characteristics, requirements, and architecture
  2. SSL VPN protocols and configurations
  3. Internet Key Exchange Protocol version 1 and 2
  4. IKE v1 & 2 and ISAKMP
  5. Site-to-Site IPsec VPN Operations
  6. VPN routes management/handling at gateways
  7. Overview of MPLS VPN Technology

Learning Outcomes

On successful completion of this unit, students should be able to:

  1. Explain the significance of VPN for contemporary organisations
  2. Discuss the role of VPN to support the security of businesses and corporations
  3. Describe architectural VPN design for small, medium and large businesses and corporations
  4. Report on the health of the existing VPN architecture, solution, data, application, and technology
  5. Discuss the appropriate security design and solutions for varieties of organisations
  6. Report on the current and future state of the management of VPN infrastructure and its technologies
  7. Interpret a roadmap process to transform the VPN architecture to support long-term organisations’ goals
  8. Implement a process to support the administration and the management of VPN

Teaching Method

Lecture: 2 hours
Tutorial/Workshop: 2 hours
Face to Face


Assessment Task
Learning Outcomes Assessed
Midterm Test a-c*10%
Assignment 1a,b*15%
Assignment 2c-h*15%
Laboratory participation & submissiona-h*10%
Final Examination (2 hours)a-h*50%
Total 100%

*refer to learning outcomes above.


  • J. Michael Stewart, Network Security, Firewalls and VPNs, Second Edition Jones and Bartlett Learning

Reference Reading

  • M. Lewis, Comparing, Designing, and Deploying VPNs, Adobe Press, 2006
  • V. Bollapragada, M. Khalid and Scott Wainner, Advanced IPSec VPN Design, U.S.A.: Pearson Education (Cisco Press), 2005
  • J. H. Carmouche, IPSEC Virtual Private Network Fundamentals, U.S.A.: Pearson Education (Cisco Press), 2006
  • R. Deal, The Complete Cisco VPN Configuration Guide (Networking Technology), U.S.A.: Pearson Education (Cisco Press), 2006
  • D.Harkins and D.Carrel, The Internet Key Exchange (IKE), The Internet Society, RFC 2409 (November 1998)

MIT is committed to ensure the course is current, practical and relevant so that graduates are “work ready” and equipped for life-long learning. In order to accomplish this, the MIT Graduate Attributes identify the required knowledge, skills and attributes that prepare students for the industry.
The level to which Graduate Attributes covered in this unit are as follows:

Ability to communicateIndependent and Lifelong LearningEthicsAnalytical and Problem SolvingCultural and Global AwarenessTeamwork Cooperation, Participation and LeadershipSpecialist knowledge of a field of study


Colour coding    

Extent covered

                               The standard  is covered by theory and practice, and addressed by assessed activities in which the students always play an active role, e.g. workshops, lab submissions, assignments, demonstrations, tests, examinations
 The standard is covered by theory or practice, and addressed by assessed activities in which the students mostly play an active role, e.g. discussions, reading, intepreting documents, tests, examinations
 The standard is discussed in theory or practice; it is addressed by assessed activities in which the students may play an active role, e.g. lectures and discussions, reading, interpretation, workshops, presentations 
 The standard is presented as a side issue in theory or practice; it is not specifically assessed, but it is addressed by  activities such as lectures or tutorials
 The standard  is not considered, there is no theory or practice or activities associated with this standard