Solved

Cisco AnyConnect vs Cisco IPSec VPN

Posted on 2011-02-25
1
1,827 Views
Last Modified: 2012-05-11
I'm considering granting several types of devices (android phones, iphone, ipad, windows 7 laptop, and windows xp laptop) access via our Cisco ASA 5510's. I'm looking at the free IPSec VPN and comparing it to the Cisco AnyConnect VPN. Could you offer your pros and cons to both and is there any functional difference and possible costs?

Here is what I believe or know:
1) AnyConnect has a licensing fee [750 simultaneous AnyConnect users in your environment is $250 (L-ASA-AC-E-5520=) and add another $250 for Mobile (L-ASA-AC-M-5520=)].
2) 4 licenses for IPSec SSL VPN are included with the ASA 5510 Security Plus license
3) AnyConnect Supports more types of devices.
4) AnyConnect is a seamless connection for end users.
0
Comment
Question by:First Last
1 Comment
 
LVL 33

Accepted Solution

by:
MikeKane earned 500 total points
ID: 34983548
The Anyconnect client is SSL over 443 which means that the outbound traffic, being a web port, will automatically get out through home routers, other businesses firewalls, etc...    You don't need to worry about the issues that hamper an ipsec vpn like NAT-T, extra open ports, etc...  

Anyconnect SSL is the only solution if you want to use cisco phone VPNs (you'd also need the vpn phone lic for that).  Anyconnect can be pushed to a client over the webvpn with auto updates as well as start before login.  

IPSEC client is free.   That's a big plus right there if you are up against a budget.    It also does SBL.    




0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

When I upgraded my ASA 8.2 to 8.3, I realized that my nonat statement was failing!   The log showed the following error:     %ASA-5-305013: Asymmetric NAT rules matched for forward and reverse flows It was caused by the config upgrade, because t…
Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

820 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question