Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1004
Views
0
Helpful
4
Replies

how to implement remote access ?

tiwang
Level 3
Level 3

‎08-13-2018 11:56 AM - edited ‎02-21-2020 09:26 PM

hi out there

I am trying to brainstorm a bit - my company here is currently using Microsoft DA for remote access which in fact is a brilliant implementation of a remote access technology - but only for MS platform

I am tasked with designing a solution supporting all platforms and permitting full network access in a secure way - so - hmm - sounds simple - doesn't it?

Well - as a cisco man my first thought was of course a ASAv10 as VPN concentrator - easy to deploy and manage and cheap. Another way could be Meraki Z1/3 - feels as a refresh version of the old vpn3002 remote access device but it is sort of userfriendly and gives the same benefit as DA - the client is directly attached to the enterprise network before logon so policies etc can be deployed. No need for establish a vpn tunnel from a client and cloud managed so easy to support. But 10 times as expensive as the AnyConnect solution.

But - is this old style - old fashion -   besides of other client versions etc - how could a remote access else be established?

 

Btw - anyone out there which knows the remaining lifetime of the ASAv platform - any rumours ? Would it be better to look at another platform for vpn termination?

 

br ti

0 Helpful
4 Replies 4

balaji.bandi
Hall of Fame
Hall of Fame

‎08-13-2018 01:18 PM - edited ‎08-14-2018 12:59 AM

It all depends on how you design network.

Cisco moving to Future is  FTD.

 

If the cisco solution is expensive, you need to work on the other market and compare what features you looking to deploy for your organisation to secure.

 

BB

 

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Mohammed al Baqari
Level 11
Level 11

‎08-14-2018 12:51 AM

Hi,

Instead of using ASAv you can use FTDv which provides VPN functionality
along with NGFW features. This way you can close the risk of ASAv being
phased out.

Now AnyConnect is the way to go when it comes to remote access and it has
two flavors which are TLS/DTLS or IKEv2 depending on your policies and
requirement.

*** On a side note, FlexVPN is IOS technology and can't be implemented on
FTD. On FTD or ASA its IKEv2 AnyConnect which is different than FlexVPN
0 Helpful

tiwang
Level 3
Level 3
In response to Mohammed al Baqari

‎08-21-2018 10:49 PM

ok ok - but firepower (FTD) is just another platform to terminate AnyConnect on - and well - maybe the ASAv here would still be a better solution because that has been there for really many years and works very well - it should solely be as "vpn-server" - and yes - flexvpn is an IOS technology and not that useably for roaming users. 

But - is there other ways which just not has come to our mind of implementing Remote Access? 

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to tiwang

‎08-21-2018 11:18 PM 

But - is there other ways which just not has come to our mind of implementing Remote Access?

You need elaborate what you mean by this ? or you need to contact local Cisco Partner to suggest you better needs.

 

If you looking other vendor there are many solutions, you or organisation need to choose right choice for your needs by looking future longer plan and investment protection and stable solution, so business continuity of operation take can care.

 

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful
Customers Also Viewed These Support Documents