Solved

Tieing two networks together using VPN

Posted on 2007-11-24
1
304 Views
Last Modified: 2010-04-12
Hello,
I am trying to tie two networks together via VPN over two T1's. This has not been implemented yet and want to see if there is something I am missing/overlooking in my design. Just curious if anyone can analyze it and tell me I am a complete idiot or genious.

The basics of it is that I have a server sitting in the company HQ that hosts the POS system, Domain Controller and Exchange server. I have another point two cities over that need to use the POS System and Domain controller. I plan on using Cisco 1721 Routers to establish an L2TP VPN Connection between the two sites. Our shipping and receiving department, and a few company directors are moving to the Lynnwood branch, so this solution needs to work 24/7/365.

My concerns are the reliability of L2TP VPN being used 24/7, and proper configuration of the Cisco routers. I have a 1721 in the mail for me to play with before this whole thing gets implemented.

View my system design here: http://caseystrom.com/media/topog/

Thanks for your help in advance!
-Casey Strom
0
Comment
Question by:klo555
1 Comment
 
LVL 79

Accepted Solution

by:
lrmoore earned 125 total points
ID: 20342786
> this solution needs to work 24/7/365.
>I plan on using Cisco 1721
>My concerns are the reliability of L2TP VPN being used 24/7

I think these are the main points here. You need a reliable solution, but the 1721 is end-of-lifed product and I would not recommend them. I would recommend the newer 1841 T1 bundle with security features.

Generally speaking, the Cisco products and IPSEC VPN tunnels are extremely reliable, and the 1841's are particularly good.

There are many different points of failure where you need resiliency and dependability.
Power - make sure you have good UPS's on both ends. Make sure you have T1 surge protectors on the T1 lines on both ends

If you only have a single T1, then it is also a point of failure. Do you need a backup routing solution like DSL, or a 2nd T1? You need to monitor it for error conditions and be proactive with the telco at first signs of distress (errors or line resets).

If these are Internet T1's, then you are also at the mercy of many different providers and no Quality of Service guarantee, ever. There are issues outside your control if you rely on Internet for connectivity.

I would recommend going with a MPLS WAN connection from your telco. Or dedicated point to point T1. Since it would be a private network, it costs a bit more, but comes with Service Level Agreements that hold the telcos feet to the fire to be proactive on their own.

How redundant you make it is up to your budget. How much you budget depends on how much it costs per hour of downtime.
0

Featured Post

Live: Real-Time Solutions, Start Here

Receive instant 1:1 support from technology experts, using our real-time conversation and whiteboard interface. Your first 5 minutes are always free.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Problem Description:   Couple of months ago we upgraded the ADSL line at our branch office from Home to Business line. The purpose of transforming the service to have static public IP’s. We were in need for public IP’s to publish our web resour…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

786 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question