dissolved
asked on
Using satellite and Cisco?
We are trying to implement a site to site VPN here. Headquarters have a cisco router, and so will the remote site. Problem is, the remote site must use satellite to access the internet. My questions are:
1. Can GRE or IPSEC be tunneled via satellite connection?
2. How will the satellite interface to the cisco router?
1. Can GRE or IPSEC be tunneled via satellite connection?
2. How will the satellite interface to the cisco router?
ASKER
Thanks JFrederick. Can I use a 2600 router (w/dual ethernet interfaces) to do this?
Thanks
Thanks
ASKER
will it support IPSEC or GRE tunneling I mean with the latest IOS?
thanks
thanks
Yes, 2600 with dual ethernet interfaces will work. You need to use the Advanced Security or IP PLUS (IPSEC, 3DES) image. Only the IOS images including security allow for VPN use. You can use the Software Advisor on Cisco's website to find the exact image to download.
ASKER
Do you recommend a cisco pix behind the 2600? I'm guessing I will have to config the pix as well for VPN. Or only the router?
So the 2600 will be acting as the VPN server and the PIX will be doing it's regular thing?
Also, L2TP is the tunneling method to use when going from site to site VPNs right? Where does IPSEC come into play here? L2TP is not encrypted by default so IPSEC does that?
(sorry about the noob questions)
Thanks
So the 2600 will be acting as the VPN server and the PIX will be doing it's regular thing?
Also, L2TP is the tunneling method to use when going from site to site VPNs right? Where does IPSEC come into play here? L2TP is not encrypted by default so IPSEC does that?
(sorry about the noob questions)
Thanks
Yes, by all means, use a PIX behind the 2600 router and let it handle the VPN and filtering. If you use a PIX, the 2600 router will NOT be configured for the VPN, it will be acting as a pass through more or less. The PIX would only be setup for the VPN.
Yes, IPSEC provides encryption for L2TP as it does not have built in encryption.
Yes, IPSEC provides encryption for L2TP as it does not have built in encryption.
ASKER
ok so it's:
router------->pix (doing vpn and filtering)-------------->s
In essence, the pix is THE vpn server. Last 2 questions:
1. What pix firewall can do what I need (I know there must be a ton of different models.) Looking for the most cost effective solution.
2. What ports on the router need to be forwarded to allow VPN incoming/outgoing to and from Pix (vpn server)
Thanks man, you rock!
router------->pix (doing vpn and filtering)-------------->s
In essence, the pix is THE vpn server. Last 2 questions:
1. What pix firewall can do what I need (I know there must be a ton of different models.) Looking for the most cost effective solution.
2. What ports on the router need to be forwarded to allow VPN incoming/outgoing to and from Pix (vpn server)
Thanks man, you rock!
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
you rock thanks man
2. Typically, the satellite connection will be handed off as an RJ45 Ethernet connection so you'll need a router with an extra ethernet interface.