Link to home
Start Free TrialLog in
Avatar of tmonteit
tmonteitFlag for Afghanistan

asked on

Need help understanding VPN Solutions

First, I'm new to VPN so if my concepts are wrong.  Please help me understand what's going on here.

We need an environment to build distributed client-server software among 10 subcontractors.

We recently decided we needed a project VPN for 10 remote sites. (each in seperate corporations)  Our corporate IT department put together a proposal to use 10 Connectivity "VPN in a box" and a "Conitivity 600" as a central server.  
The Conitivity 600 would sit on our corporate DMZ.  Total price including Labor, Licencing, and SLAs is approx: $24K.
Long story short, my boss throws a fit.  He's unwilling to spend $24K.  I'm supposed to find a less expensive solution?

What's available?  What's best for our situation?  What will allow our developers adequate flexibility?
1.  OpenVPN?  a.  How would it work through corporate firewalls?  b.  What else besides all opening Ports 1140 on UDP and we installed OPenVPN on  a server?
2.  Citrix?
3.  I recall at one time Genuity had a product called "Managed VPN" where we all install client software and they handle the rest.  Do products like this still exists?  Worth it?  Who provides?
ASKER CERTIFIED SOLUTION
Avatar of Les Moore
Les Moore
Flag of United States of America image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of xrok
xrok

lrmoore, really has break down to $...I think it is very good advise .(to save bucks)
But sometime save $ today cost you $$ later. (Poor Performance - Time is money)

Does your HQ own any Server?
How many users are to be connect to HQ via VPN?
Does your application support VPN?
Citrix is very nice tool, but RDP is also nice and lot cheaper,(But require Server 2000 or 2003 w/Licenses)







If you are opening your network up to other companies, you really need reliable security.  I think that an all-Linksys (or all-Netgear, etc) solution would be dangerous.  If your boss is really budget concious, consider a Cisco at your place and low-end VPN routers (Linksys, Netgear) at the remote sites.

I am in a similar situation, managing a VPN with about 12 sites.  For the most part, there is one central office and 11 remote sites (smaller offices, homes, etc.)  I started out with all Netgear FVS318s.  For a street price of about $125, they couldn't be beat.  

Eventually, I became unhappy with the throughput and switched the central office to an FVL328 (about $300-something).  It turned out to be flaky and finally failed.  It has now been replaced with a Cisco 831 which cost somewhere bewteen $500 and $1000.  

I can't say enough good things about the Cisco support.  You do get what you pay for.  When I look at the amount of lost productivity that my customer suffered due to intermittent problems with the Netgear, the Cisco seems very reasonably priced.  With Cisco's help, I have been able to leave the Netgear FVS318's at the remote sites and I have full, reliable connectivity with the added security features of the Cisco.  Warning: it takes some time to learn Cisco's IOS in order to manage the Cisco router yourself, but I think it is worth it.

I have asked Cisco for permission to post the Netgear-to-Cisco VPN configurations that we developed and they have said okay.  Post again if you are interested in details.
Avatar of tmonteit

ASKER

aleinbach,  would like to see the configurations if you can share....
Sorry for the delay.  I have posted a quickie overview at:

http://www.jefdevco.com/vpn.html

I hope to redo this when I have a free moment and make it a little clearer and more explanatory.  In the meantime, if you have any questions, please feel free to contact me at alain@jefdevco.com.