Solved

What SSG model for 55 IPSEC Tunnels?

Posted on 2013-02-02
7
295 Views
Last Modified: 2013-02-03
I have 54 branch offices and need each one to VPN to a central location.  Would an SSG140 work for this?  Could it also handle logging for the VPN traffic?
0
Comment
Question by:dhuff2012
  • 4
  • 2
7 Comments
 
LVL 11

Expert Comment

by:MajorBigDeal
ID: 38847905
In terms of number of sessions, yes.

http://www.networkscreen.com/SSG140.asp?gclid=CM3tlrOembUCFcODQgodQQUAOQ

under the specifications tab the maximum number of concurrent sessions is 48,000.
0
 

Author Comment

by:dhuff2012
ID: 38847953
Would this also be scalable for up to 200 VPN's?
0
 
LVL 11

Expert Comment

by:MajorBigDeal
ID: 38847973
Yes, assuming that the total amount of bandwidth is within the limits of the box.
0
Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

 
LVL 11

Expert Comment

by:MajorBigDeal
ID: 38847977
The max vpn tunnels is 500 so 200 is not a problem.
0
 
LVL 11

Expert Comment

by:MajorBigDeal
ID: 38847981
I just noticed the logging part of your question.  It does support some logging and monitoring.  But if you want to get more sophisticated it can use a syslog server.
0
 
LVL 69

Accepted Solution

by:
Qlemo earned 500 total points
ID: 38848438
The SSG140 will work if you do not want or need to use route-based VPN (versus policy-based). It allows for 50 (static) tunnel interfaces only (the 500 are concurrent VPN tunnels, which are the sum of all route- and policy-based VPNs active at the same time).

In most cases you will use policy-based VPNs, but there are some scenarios you'll need tunnel interfaces, e.g. if you want to use one tunnel for non-consecutive target network addresses.

In regard of logging you will probably want to set up a syslog server, as recommended already, unless you are interested in traffic stats only (not sessions).
0
 

Author Closing Comment

by:dhuff2012
ID: 38848928
Thank you.  That was the exact info I needed.
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Secure VPN Connection terminated locally by the Client.  Reason 442: Failed to enable Virtual Adapter. If you receive this error on Windows 8 or Windows 8.1 while trying to connect with the Cisco VPN Client then the solution is a simple registry f…
How to set-up an On Demand, IPSec, Site to SIte, VPN from a Draytek Vigor Router to a Cyberoam UTM Appliance. A concise guide to the settings required on both devices
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

803 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question