• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 384
  • Last Modified:

Cisco VPN concentrator

hi I'm looking at purchasing a Cisco VPN concentrator to terminate all of my site to site VPN's and Cisco client VPN's

i have 2 remote sites which have a cisco 501 which VPN's back to the 515e

I'm just using a static username/password for the Cisco client!!! that's why i want to move to the VPN Concentrator

my pix is connected directly to the cisco Router (Outside) and then to the internal LAN, I have 1 DMZ connection which is already being used (mailsweeper)

what's the best network design for installing this concentrator, where should it be placed within the network?

regards
xk8
0
jagdhillon
Asked:
jagdhillon
1 Solution
 
naveedbCommented:
I'm just using a static username/password for the Cisco client!!! that's why i want to move to the VPN Concentrator

If this is the only concern you have to, you may consider deploying a RADIUS server in your environment.

If there are other reasons, reliability, volume etc., you may go ahead with Concentrator. You can connect in the same place ase your PIX is, i.e. between your Outside router and Internal Network.


You can also connect the LAN side of Concentrator to your DMZ, but would require setting up rules to allow traffic from DMZ to Inside Network through PIX. It will be more secure if you require such setup.
0

Featured Post

Never miss a deadline with monday.com

The revolutionary project management tool is here!   Plan visually with a single glance and make sure your projects get done.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now