Best practices guide for Site to Site VPN
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-09-2019 05:23 AM
Hi experts,
Can anyone point me toward the most up to date Cisco best practices guide for Site to Site VPN configuration? There is a lot of information on this topic online, but what would be document that would be considered as the one with most credibility?
Thank you.
-Dejan
- Labels:
-
VPN
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-09-2019 05:52 AM - edited 01-09-2019 05:54 AM
this link give you a Cisco official best practice for vpn
https://www.cisco.com/c/en/us/support/security/flexvpn/products-configuration-examples-list.html
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-09-2019 06:52 AM
Hi,
It depends on what hardware you are using; router, ASA or FTD and what type of topology (Hub and Spoke, Spoke-to-Spoke, MESH etc). There is not currently feature compatiblity between ASA and FTD.
Internally there used to be the RTR (route to readiness) guides, I think they used to cover VPNs, you may want to check there.
The Cisco Live presentations such as BRKSEC-1050 provides detailed information on the different VPN types, page 133-134 has a useful table providing information when to use each type of VPN and what features are available.
Either way you probably want to be using the latest NGE, reference here.
HTH
