Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
686
Views
0
Helpful
1
Replies

where should I deploy firewall and VPN server.

fly
Level 2
Level 2

‎04-10-2012 08:40 PM - edited ‎03-11-2019 03:52 PM

Hi All,

      THis is a common problem.

      we have firewall and VPN router,  I know VPN router can deploy before or after firewall, and parallel.

     which one is better!

     thank you!

Fly

Labels:
0 Helpful
1 Reply 1

sean_evershed
Level 7
Level 7

‎04-11-2012 02:32 AM

Hi,

The Cisco Press book Designing Cisco Network Service Architectures has an excellent chapter on this.

http://www.ciscopress.com/bookstore/product.asp?isbn=1587142880

Each method has various advantages and disadvantages depending on your business needs and  budget.

VPN Parallel to Firewall Advantages:

- No need to change IP addressing

- Scalable solution

VPN Parallel to Firewall Disadvantage:

- Decrypted PSec traffic is not firewall inspected.

VPN deployed in a Firewall DMZ Advantages

- Firewall can inpsect descrypted VPN traffic.

- Scalable soultion

VPN deployed in a Firewall DMZ Disadvantage

- Complex to deploy.

Don't forget to rate posts that are helpful.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card