I currently have an ATM frame in place with 2 hub locations where my frame PVC all come back to for corporate apps and Internet. I want to implement MPLS and am nervous about the any to any when a virus were to spread from one remote site to another while not infecting a hub site and go undetected.
Cisco's proposal is to ASA at the hub sites all remote traffic and remove the any to any theory of MPLS with routing to a hub site.
How will this impact performance, routing, VoIP or any future network plans?
I don't want unecessary traffic to the hub sites if I don't have to, but I want it a secure as possible.