how does a VPN work? does it work like a normal LAN?

A vpn basicall piggy back on a existing connection - in that it create a secure connection between two points.

So if you can imagine a public road between A and B, also on that road is protected private lane for just you and nobody else. The public road is the internet and the private lane is the vpn.

After the vpn is created you can use any protocal or port number you want to use. So yes the vpn is like a normal lan except it offer a bit more security.

hope this helps.

Thanks.. So does this mean that i can use an ip address such as 192.168.0.1 in a vpn? does it have restrictions on ip addresses to be used since its connectd via internet?

everything depends on the way your VPN is set up

I will be implementing an application to a VPN network. But my problem is how does VPN work? I will be using a mysql database and basically it will be all about ip address and ports. If i connect a computer that will serve as a server in a VPN network would it be like doing it in a normal LAN? how about IP address? I would be very happy if someone can answer this question.. thanks!

actually vpn is defined as network infrastructure connective deployed on a shared network with same policies and security as a private network. i will work depend on ur router. which type router ur using and which version of IOS ur using. vpn has two mode tunnel mode and transport mode. following are the configuration of vpn
crypto isakmp policy 1
encr 3des
hash md5
authentication pre-share
group 2
crypto isakmp key cisco address (ip address of remote router)
crypto ipsec transform-set (transform set name) esp-3des esp-md5-hmac
crypto map (map name) ipsec-isakmp
set peer (remote router or peer router)
set transform-set (transform set name)
match address ( access list no.)

configure same setting to ur peer router then it will work . and u should configure nat pool or pat and router will be 1800 series later and ios should support vpn. IP address means it using for idenfiying the devices. ip address have 4 classess A class range 1-126,
B class 128-191, C Class 192-223 and C & D class using for multi casting and experimental purpose. and also these three have private ip address it is normaly using for our lan network
if u have more dout about networking just mail me

with regards
inshad

yes you can and should use internal IPs

We have a 7 site network

10.10.1.0 Site 1 HQ
10.10.2.0 Site 2 Branch
.....
10.10.10.0 Site 10 Branch

you can ping any ip address on site 1 from any other computer on any site and vise versa.

Basicly think of a vpn as a virtual route across the internet.

Each Firewall that is part of the vpn has an agreement with the HQ firewall.

So each branch office firewall knows if they need to send data to 10.10.1-10.0 (other then thir local subnet) to send it to the firewall via the vpn tunnel

Read up on site to site VPNs.
There are also dialin VPNs but thats for users that work from home to access network resources securely.

http://computer.howstuffworks.com/vpn3.htm

VPNs are great, even better is Metro Ethernet and MPLS! But that very costly