Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
258
Views
0
Helpful
2
Replies

Ideal Firewall and VPN solution

rsalucci
Level 1
Level 1

‎05-01-2003 07:41 PM - edited ‎02-21-2020 12:30 PM

Hi,

I work for a non-profit so money is tight for the IT department. Headquarters consists of 25 users and there are three sattelite offices consisting of only two people in each office. I am looking for as low of a cost hardware solution as possible for a Cisco Firewall with VPN capabilities at headquarters. Doesn't have to be a PIX......could be Cisco Router (again.....must have VPN).

Also, could I get away with using WIndows 2000 VPN capabilities (without a VPN hardware device) out at the remote offices connecting to your recommended hardware Firewall / VPN device? Or do I need to go hardware device (remote client) to hardware device (at headquarters) when building the VPN?

Thank you much,

Robert

Labels:
0 Helpful
2 Replies 2

nsteup
Level 1
Level 1

‎05-01-2003 11:34 PM

Hi Robert,

its a bit difficult to implement a Cisco solution without having money to do it, isnt it? First you need the central internet connection with permanent ip address. Traffic from your three sattelites defines your needed bandwith there. And finally your provider must tell you, which port is needed to connect to the internet. Then you can choose a product for connction. If you can do it by ethernet (PPPoE is no problem) then I think, the PIX 501 with 3DES/AES encryption license is the cheapest way (but not optimal). On the remote sites you can use the Cisco VPN-Client to connect to the PIX. Only 10 SAs at one time an limited throughput, but cheap.

Regards Norbert

0 Helpful

rsalucci
Level 1
Level 1
In response to nsteup

‎05-02-2003 07:04 AM

Thank you for your help Norbert. At 56Bit DES, I think the 6Mbps will be adequate for our 5 remote VPN users, although there is not much room for growth (10 max with licenses), but if I'm correct on this, I could always purchase more licenses and add to that?

And I believe it will be mostle inbound VPN access as I don't think there will be much outbound VPN from HQ to the remote sites.

It appears to be a pretty good solution but like you said, not optimal.

All it takes is money.

Thanks for your suggestion.

Robert

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents