I need to build this scenarios:
40 slave servers with win2003 need to connect to main one(is a dc) with data encryption, the main one using the ipsec vpn to start query to the 40 servers(only when it needs outside data).
Actualy i have in production only one server, using cisco vpn client to connect to a pix 520. But i found some problem:
1- the ip of the slave server is dynamic, assigned by the pix(take by the vpn pool group)
2-vpn client disconnession, due to inactivity, loss of wan link.... i try to solve this issues with a script, but in a future of 40th servers is a weak solution....
Any suggestion for a best managment/effort of the 40 vpn ? one pix for server with a lan-to-lan vpn? a vpn concentrator for static ip assignment? a vpn server for microsoft l2tp/ipsec?
Ty in advance.