Best practices for Cisco 506e VPN concurrent connections

We have a 506e and several remote sites that remote into the appliance. I'd like to run the VPN client on each site and leave the VPN client connected most of the time. Are there performance issues or security issues in this type of thing? Also, does anyone know how many concurrent connections of the VPN client a 506e will handle?

Thank you.
LVL 7
dacITAsked:
Who is Participating?
 
decoleurConnect With a Mentor Commented:
the perfomance issues would result from the processing overhead to encrypt and decrypt traffic, here is the performance information from the 506E datasheet: http://www.cisco.com/en/US/prod/collateral/vpndevc/ps5708/ps5709/ps2030/ps4336/product_data_sheet09186a0080091b13.html

" Cleartext throughput: Up to 100 Mbps
" Concurrent connections: 25,000
" 56-bit DES IPSec VPN throughput: Up to 20 Mbps
" 168-bit 3DES IPSec VPN throughput: Up to 16 Mbps
" 128-bit AES IPSec VPN throughput: Up to 30 Mbps
" 256-bit AES IPSec VPN throughput: Up to 25 Mbps
" Simultaneous VPN peers: 25*
* Maximum number of simultaneous site-to-site or remote access IKE Security Associations (SAs) supported

you should try to use at least 3des for your encryption algo.

hope this helps,

-t
0
 
dacITAuthor Commented:
Excellent, thanks for the info. I thought I looked everywhere, but this is great!
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.