Link to home
Start Free TrialLog in
Avatar of EEAPI
EEAPI

asked on

Site to Site VPN solutions for two small offices

I am trying to create a site to site VPN between two offices.

Site 1 HQ 30 users (has AD, mail, file servers) 10Mpbs Business Ethernet up and down
Site 2 remote office 10 users - Comcast Business class with static IP 10+Mpbs up and 4+Mpbs down.

They are already in two different private subnets. Currently users from remote office login via MS RAS VPN, which is not too reliable.

I want to create a site to site VPN so the two office are always connected via the VPN but also allow some home user to continue able to login to MS RAS as now.

Thanks in advance for any recommendations. Two Sonicwall devices? Two cisco devices? What is the best way to max through put between the two locations?



Avatar of John
John
Flag of Canada image

Linksys Cisco RV0xx series routers may good VPN routers and the small ones (RV042) are quite inexpensive. I access them via IPSec but I think you can set them up for PPTP as well. ... Thinkpads_User
SOLUTION
Avatar of crouthamela
crouthamela
Flag of United States of America image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
SOLUTION
Avatar of DIPRAJ
DIPRAJ
Flag of India image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of EEAPI
EEAPI

ASKER

Thanks for the replies so far, here are more info regarding the setup:

We need to support about 10 remote users to access the vpn. They just need to use typical office apps, like Exchange/Outlook, access files on the file server. Currently, they use the MS VPN client on XP or Windows 7 to access the RAS VPN on Windows server.

How reliable are the Sonicwall ones compare to the Cisco ones? Is there any through put advantages with the Cisco device? Thanks!
Hi there, I work for a Sonicwall reseller in the UK so my answer won't be completely unbiased ! :)

We run managed services for around 1100 customers in the UK running a mixture of Cisco and Sonicwall solutions most of which are a mirror for what you are trying to achieve.

The main considerations are going to be budget and functionality.

But looking looking at functionality one point you highlight is throughput and its important too check out whether you want to use inbuilt UTM (unified threat managment) which is offered on all the Sonicwall devices and a number of the Cisco ones. If you use it, compare the speeds of throughput, in our expereince the Sonicwall often does a better job.

The next thing is connectivity. A TZ210 offers 3G fallback so if the main connection goes down you can use a 3g dongle (get one that's compatible not anyone will work e.g. a Huwai E160) it will be slow but you can still do stuff whilst the line is fixed.

Obviously integrated WiFi access is handy but more important is that it gives you a single point to control security at that site so that maybe important.

Again on the Sonciwall (and I assume the Cisco) they offer an SSL VPN now with 25 user license, which means you can allow people to connect into a reasonable standard SSL VPN when away from the office with some reasonable functionality in terms of configuring the user interface.

Also if you do need remote users then the Virtual Assist option on the Sonicwall gives you an equivalane to Citrix Assist or Reachout built into the VPN so that if the user is having trouble installing the software on their home machine for example, you can do a remote session with them and get it sorted more quickly.

We have customers that will run multiple branches with 5-10 users per branch back into a TZ200 so performance wise it will work for you I'm sure, its just checking out the other functionality and making sure the 'brand' of the product isn't more important than what it does! :)

This link is a comparison of the TZ products if you need to take a look http://www.sonicwall.com/us/products/13281.html.

Let me know if you'd like to know anything more.
dear ,
don't be biased....you can go for any UTM...
but the solution should be ok.
Avatar of EEAPI

ASKER

Will the Sonicwall/Cisco device support Intel Mac's 10.5.x and up? So if I go with the Sonicwall, and use it for site-to-site VPN and VPN for home users, this will work? How does the Sonicwall get VPN access permission from Active Directory? Compare that to the VPN on MS server, should I expect better through put?
ASKER CERTIFIED SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
If you have Mac clients you can use a FREE app called IPSecuritas by Lobotomo. It allows you to connect you Macs to both Sonicwall and Cisco devices for VPN.

The Sonicwall can be configured for AD RADIUS authentication.