Solved

VPN Box Model

Posted on 2008-06-25
14
627 Views
Last Modified: 2012-06-27
I am looking for a simple VPN box for my home connectivity.
I want a product apart from Cisco, Juniper, Nortel, NEC & Linksys.
Could anyone specify me with any other product for my VPN ? I am looking for a low end product.

0
Comment
Question by:RajeevSrikant
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 7
  • 7
14 Comments
 
LVL 29

Expert Comment

by:Jan Springer
ID: 21867755
I like the Cisco ASA 5505.  On CDW (I believe), it runs around $420.
0
 

Author Comment

by:RajeevSrikant
ID: 21867854
how can i make the IP Sec tunnel between two VPN devices where both the devices are receiving dynamic IPs from different ISPs.



0
 
LVL 29

Expert Comment

by:Jan Springer
ID: 21868042
I would think that you would use the dynamic crypto map statements with pre-shared keys and authentication (username, password) configured.
0
Ready to trade in that old firewall?

Whether you need to trade-up to a shiny new Firebox or just ready to upgrade from whatever appliance you're using now, WatchGuard has the right appliance for you! Find your perfect Firebox today with appliance sizing tool!

 

Author Comment

by:RajeevSrikant
ID: 21868308
there is a option called Dynamic dns through which this can be achieved.
Could any one help me in understating how dynamic DNS works with IPSec in scenario where both the sides of the VPN devices are receiving IP address from DHCP
0
 
LVL 29

Expert Comment

by:Jan Springer
ID: 21868459
Actually, you both setup crypto maps specifying dynamic remote (no peer address).  Use a pre-shared key.

Since you both have Internet access (to reach each other), just use the DNS server that you would normally use that is specified in  your workstation configuration.  This should not change unless I am misunderstanding what it is that you are trying to accomplish.
0
 

Author Comment

by:RajeevSrikant
ID: 21868490
My requirement is as follows

I have two sites. In both the sites i have broadband internet connectivity. I receive DHCP IP from the service provider. I want to connect these two sites via IP sec VPN

How this can be achieved.
0
 
LVL 29

Expert Comment

by:Jan Springer
ID: 21868555
So, is the question, how do I connect to a remote location when I don't know its IP? It doesn't matter if the IP is obtained via DHCP.  It does matter if the provider does not assign a publicly routed IP.

And do the providers expire and change your IP from time to time?  If that's the case, even a public IP will require a reconfiguration at both ends.  If it's not a public IP on at least one end, I just don't see that this workable.
0
 

Author Comment

by:RajeevSrikant
ID: 21871717
The dynamic IP address assigned is public at both the ends.
0
 
LVL 29

Expert Comment

by:Jan Springer
ID: 21874894
So, you can create a point-to-point vpn bearing in mind that, if or when the IP of one end changes, you will need to update your peer statement with the new IP.  I wouldn't bother with dynamic crypto statements.
0
 

Author Comment

by:RajeevSrikant
ID: 21881038
There is one option i explored which is the DDNS, through which we can regiested the hostname to the IP in websites like http://www.dyndns.com/
0
 
LVL 29

Expert Comment

by:Jan Springer
ID: 21883973
dynamic crypto works with a firewall at one end (and a fixed configuration) and a client  with a dynamic IP at another end that initiates the connection.

I do not believe that you can set the peer with a hostname.
0
 

Author Comment

by:RajeevSrikant
ID: 21906025
have a look at this website

http://www.dyndns.com/
0
 
LVL 29

Expert Comment

by:Jan Springer
ID: 21907650
I'm familiar with dyndns.com.  What I can't find is any configuration option that suggests that, with the Cisco product, you can set a peer by hostname.
0
 

Accepted Solution

by:
RajeevSrikant earned 0 total points
ID: 22168553
Cisco linksys VPN box supports it. I have tested it.
0

Featured Post

Ready to trade in that old firewall?

Whether you need to trade-up to a shiny new Firebox or just ready to upgrade from whatever appliance you're using now, WatchGuard has the right appliance for you! Find your perfect Firebox today with appliance sizing tool!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Do you have an old router lying around the house that you don’t know what to do with? Check the make and model, then refer to either of these links to see if its compatible. http://www.dd-wrt.com/site/support/router-database http://www.dd-wrt.c…
I've had to do a bit of research to setup my VPN connection so that Clients can access Windows Server 2008 network shares.  I have a Cisco ASA 5510 firewall.  I found an article which was extremely useful: It had a solution if you use ASDM to config…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

627 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question