Buy or Renew
Buy or Renew
NEW! Stay up-to-date on Cisco Secure Access: Software Release Notes and Announcements
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
583
Views
0
Helpful
3
Replies

RAVPN Zoning

fatalXerror
Level 5
Level 5

‎10-22-2018 10:57 AM

Hi guys, I saw some deployment using only 1 leg (outside only) for their RAVPN and some I saw 2x leg (outside and inside). I just want to know what are the benefits for those 2 kinds of deployment in the perspective of security?

Labels:
0 Helpful
3 Replies 3

Mohammed al Baqari
Level 11
Level 11

‎10-22-2018 10:41 PM

1 leg is used when you want to get internet traffic from your VPN users
back to HQ then breakout from HQ. This means that all your endusers access
internet from HQ which enables you to put solid security in HQ as one time
and all remote users utilize it.

This is very good security measure along with always on VPN feature to make
sure that remote users are protected. However, end users don't like that
because they don't want to be monitored when they are outside the office

Two legs model is used for remote users to access organization
resources/applications
0 Helpful

fatalXerror
Level 5
Level 5
In response to Mohammed al Baqari

‎10-23-2018 02:01 AM

@Mohammed al Baqari, thanks for the feedback. but in the 1-legged approach you can still configure your RAVPN to have access to the internal resources right? what will be implication of that?

0 Helpful

Mohammed al Baqari
Level 11
Level 11
In response to fatalXerror

‎10-23-2018 10:17 PM

Yes you can do. In fact everything goes through the tunnel (internet and
intranet). There is no implication. As I said this is the safer approach.
0 Helpful
Customers Also Viewed These Support Documents