brasslan
asked on
Cisco VPN concentrator
I'm currently running a PIX 501 at our office and I have 4 point to point VPN's setup there. The problem is now 2 of the points not only want to talk to my office, now they want to talk to each other.
I've always been told that the PIX 501 will not allow VPN traffic from one office to come in and leave for another office. Is that true? Is there a way around it? Maybe with a router on the inside?
What is the least expensive Cisco device that will allow VPN traffic to do what I want?
Thanks!
brasslan
I've always been told that the PIX 501 will not allow VPN traffic from one office to come in and leave for another office. Is that true? Is there a way around it? Maybe with a router on the inside?
What is the least expensive Cisco device that will allow VPN traffic to do what I want?
Thanks!
brasslan
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Can this be done with any Cisco router? Does every Cisco router have VPN capabilities?
And yes, the stupid guys at Office B and C will adjust their current access lists to allow the new traffic, but won't build a tunnel between themselves :-(
And yes, the stupid guys at Office B and C will adjust their current access lists to allow the new traffic, but won't build a tunnel between themselves :-(
ASKER
The question wasn't really answered. But I do apreciate the responces, they were very helpful.
Yes it is possible, the cisco routers have VPN capabilies
ASKER
Can this be done with any Cisco router? Do I need to look for one with VPN capabilities?
I've never heard of DMVPN, but from the 2 pages that I just read, it sounds like all endpoints would have to be setup for the DMVPN and I don't know if the other 2 locations are capable (or willing) to do this.
Right now, the PIX is the head end for our network. Should I put the Cisco router outside the firewall and move the VPN responsibilities to the new device? Or should the router sit inside the firewall?