[Last Call] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 489
  • Last Modified:

Best practices for Cisco 506e VPN concurrent connections

We have a 506e and several remote sites that remote into the appliance. I'd like to run the VPN client on each site and leave the VPN client connected most of the time. Are there performance issues or security issues in this type of thing? Also, does anyone know how many concurrent connections of the VPN client a 506e will handle?

Thank you.
0
dacIT
Asked:
dacIT
1 Solution
 
decoleurCommented:
the perfomance issues would result from the processing overhead to encrypt and decrypt traffic, here is the performance information from the 506E datasheet: http://www.cisco.com/en/US/prod/collateral/vpndevc/ps5708/ps5709/ps2030/ps4336/product_data_sheet09186a0080091b13.html

" Cleartext throughput: Up to 100 Mbps
" Concurrent connections: 25,000
" 56-bit DES IPSec VPN throughput: Up to 20 Mbps
" 168-bit 3DES IPSec VPN throughput: Up to 16 Mbps
" 128-bit AES IPSec VPN throughput: Up to 30 Mbps
" 256-bit AES IPSec VPN throughput: Up to 25 Mbps
" Simultaneous VPN peers: 25*
* Maximum number of simultaneous site-to-site or remote access IKE Security Associations (SAs) supported

you should try to use at least 3des for your encryption algo.

hope this helps,

-t
0
 
dacITAuthor Commented:
Excellent, thanks for the info. I thought I looked everywhere, but this is great!
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now