Solved

Cisco AnyConnect vs Cisco IPSec VPN

Posted on 2011-02-25
1
1,818 Views
Last Modified: 2012-05-11
I'm considering granting several types of devices (android phones, iphone, ipad, windows 7 laptop, and windows xp laptop) access via our Cisco ASA 5510's. I'm looking at the free IPSec VPN and comparing it to the Cisco AnyConnect VPN. Could you offer your pros and cons to both and is there any functional difference and possible costs?

Here is what I believe or know:
1) AnyConnect has a licensing fee [750 simultaneous AnyConnect users in your environment is $250 (L-ASA-AC-E-5520=) and add another $250 for Mobile (L-ASA-AC-M-5520=)].
2) 4 licenses for IPSec SSL VPN are included with the ASA 5510 Security Plus license
3) AnyConnect Supports more types of devices.
4) AnyConnect is a seamless connection for end users.
0
Comment
Question by:First Last
1 Comment
 
LVL 33

Accepted Solution

by:
MikeKane earned 500 total points
ID: 34983548
The Anyconnect client is SSL over 443 which means that the outbound traffic, being a web port, will automatically get out through home routers, other businesses firewalls, etc...    You don't need to worry about the issues that hamper an ipsec vpn like NAT-T, extra open ports, etc...  

Anyconnect SSL is the only solution if you want to use cisco phone VPNs (you'd also need the vpn phone lic for that).  Anyconnect can be pushed to a client over the webvpn with auto updates as well as start before login.  

IPSEC client is free.   That's a big plus right there if you are up against a budget.    It also does SBL.    




0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Cisco Pix/ASA hairpinning The term, hairpinning, comes from the fact that the traffic comes from one source into a router or similar device, makes a U-turn, and goes back the same way it came. Visualize this and you will see something that looks …
Use of TCL script on Cisco devices:  - create file and merge it with running configuration to apply configuration changes
This video demonstrates how to create an example email signature rule for a department in a company using CodeTwo Exchange Rules. The signature will be inserted beneath users' latest emails in conversations and will be displayed in users' Sent Items…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

919 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now