Cisco VPN Tunnels
Hi All,
I have a customer with 4 sites, these sites are have an ADSL connection each that has been set-aside for VPN.
They require site-to-site VPN to be set up so each router has a VPN tunnel to the next - so there will need to be 3 x site-to-site VPN connections per router.
I have looked on the Cisco website and it would seem that Cisco 800 series routers (867 for example) is what we need for this. My only questions is the number of tunnels it can accomodate - if it can have a max of 5 tunnels does this mean I can have what I require?
Thanks
K
I have a customer with 4 sites, these sites are have an ADSL connection each that has been set-aside for VPN.
They require site-to-site VPN to be set up so each router has a VPN tunnel to the next - so there will need to be 3 x site-to-site VPN connections per router.
I have looked on the Cisco website and it would seem that Cisco 800 series routers (867 for example) is what we need for this. My only questions is the number of tunnels it can accomodate - if it can have a max of 5 tunnels does this mean I can have what I require?
Thanks
K
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
As you have said Cisco 8xx is the way to go. The feature you need is DMVPN It's only available in the advipservices version of the IOS.
It uses a hub spoke design VPN. Each site (spoke) can communicate directly with each other rather than via a central point. So you don't need massive amounts of bandwidth at the hub. You only need a fixed IP on the Hub, the other sites can use dynamic IPs (lowering the ISP costs)
I've used this successfully on the Cisco 877W with 8 sites, without any issues. Very cost effective.
It relatively simple to setup and works well.
http://www.cisco.com/en/US/products/ps6658/index.html
http://www.cisco.com/en/US/docs/ios/12_2t/12_2t13/feature/guide/ftgreips.html
Regards
Rob
It uses a hub spoke design VPN. Each site (spoke) can communicate directly with each other rather than via a central point. So you don't need massive amounts of bandwidth at the hub. You only need a fixed IP on the Hub, the other sites can use dynamic IPs (lowering the ISP costs)
I've used this successfully on the Cisco 877W with 8 sites, without any issues. Very cost effective.
It relatively simple to setup and works well.
http://www.cisco.com/en/US/products/ps6658/index.html
http://www.cisco.com/en/US/docs/ios/12_2t/12_2t13/feature/guide/ftgreips.html
Regards
Rob
Best bet would be to check with a Cisco sales rep. I would trust them to give you an honest answer and not upsell you. Also if there is a chance for expansion it might be wise just to get something like the 887 from the start.