Solved

Cisco AnyConnect vs Cisco IPSec VPN

Posted on 2011-02-25
1
1,834 Views
Last Modified: 2012-05-11
I'm considering granting several types of devices (android phones, iphone, ipad, windows 7 laptop, and windows xp laptop) access via our Cisco ASA 5510's. I'm looking at the free IPSec VPN and comparing it to the Cisco AnyConnect VPN. Could you offer your pros and cons to both and is there any functional difference and possible costs?

Here is what I believe or know:
1) AnyConnect has a licensing fee [750 simultaneous AnyConnect users in your environment is $250 (L-ASA-AC-E-5520=) and add another $250 for Mobile (L-ASA-AC-M-5520=)].
2) 4 licenses for IPSec SSL VPN are included with the ASA 5510 Security Plus license
3) AnyConnect Supports more types of devices.
4) AnyConnect is a seamless connection for end users.
0
Comment
Question by:First Last
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 33

Accepted Solution

by:
MikeKane earned 500 total points
ID: 34983548
The Anyconnect client is SSL over 443 which means that the outbound traffic, being a web port, will automatically get out through home routers, other businesses firewalls, etc...    You don't need to worry about the issues that hamper an ipsec vpn like NAT-T, extra open ports, etc...  

Anyconnect SSL is the only solution if you want to use cisco phone VPNs (you'd also need the vpn phone lic for that).  Anyconnect can be pushed to a client over the webvpn with auto updates as well as start before login.  

IPSEC client is free.   That's a big plus right there if you are up against a budget.    It also does SBL.    




0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
adjusting startup config 6 72
upgrade Cisco Aironet AP 3 39
Cisco Anyconnect on MS Surface 12 43
Cisco Meraki Alert - Client IP Detected 1 40
When I upgraded my ASA 8.2 to 8.3, I realized that my nonat statement was failing!   The log showed the following error:     %ASA-5-305013: Asymmetric NAT rules matched for forward and reverse flows It was caused by the config upgrade, because t…
This article will cover setting up redundant ISPs for outbound connectivity on an ASA 5510 (although the same should work on the 5520s and up as well).  It’s important to note that this covers outbound connectivity only.  The ASA does not have built…
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

736 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question