Cisco 2800 - Road Warrior VPN

A friend of mine has implement a vpn tunnel (road-warrior) on a 2800 series router (i don't remember the exact model). The thing is that he can't make 10 diferrent vpn tunnels and so one key is been shared between the users. Availability is critical and in this situation i don't think that exists. Neither confidentiality :P. As he said, he uses one vpn card that's y all that happens.

Looking for a solution that will give him high availability for road warrior vpns do u have any suggsetions, thoughts ?

how about http://www.cisco.com/en/US/products/ps5854/products_data_sheet0900aecd80405e25.html

???

Find more posts tagged with

Comments

mikej412

So you want redundancy and VPN stateful failover? Check out Using the Cisco ASA 5500 Series for VPN Connectivity for some ideas.

The 2800s do a nice job.... but maybe using certificates would be a more manageable solution. How many users are there?

pr3d4t0r

mikej412 wrote:

So you want redundancy and VPN stateful failover? Check out Using the Cisco ASA 5500 Series for VPN Connectivity for some ideas.

The 2800s do a nice job.... but maybe using certificates would be a more manageable solution. How many users are there?

10-15 users i think, Cisco ASA 5500 is too expensive or not ?, maybe i'll do the work with a linux box as vpn concentrator.

The current VPN topology and integration as is now, is very bad. One shared key for 10-15 users ? that's unacceptable. The admin there has ported to the 2800 one vpn module which accepts 2 users. The more the cards, the more the users, the more the cost...a cost effective solution would help, this is y i think linux will do the job.

forbesl

Are you speaking of the Virtual Private Network (VPN) Advanced Integration Module (AIM) in the router? If so, it will support far more separate VPN connections than you describe (1500 IPSec Encrypted Tunnels and up to 150 IOS WebVPN SSL VPN Users - depending on the series model)

http://www.cisco.com/en/US/products/ps5854/products_data_sheet0900aecd804ff58a.html

Each connection can have it's own key...