Site-to-Site VPN versus Remote Access VPN

Unanswered Question
May 4th, 2007


I have a site-to-site VPN b/ my HQ and my remote branch and I am facing slowness in VPN big time when synching emails through MS Outlook, however when connecting through remote VPN the users are not facing this slowness and are synching emails just fine.

I know IPSec adds overhead over IP traffic which is about 56 bytes, please correct if I am wrong. Now does Site-to-site VPN add more overhead than what the remote VPN adds causing this slowness? Or could that be due to wrong site-to-site VPN between the PIX and the remote branch's VPN device? By the way, for remote users VPN I am currently using Microsoft VPN.

Appreciate your response on this.



I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Jon Marshall Mon, 05/07/2007 - 10:37

Hi Haitham

When the users connect via remote access VPN what is the VPN endpoint in your network ?. Is it the same as the VPN endpoint for the site-to-site VPN ?

There should not be a significant overheaed increase on a site-to-site VPN. What it could be is ports/protocols being allowed through the tunnel. A lot of MS stuff will work even with ports blocked but it can take a whole lot longer.

Could you fill in a few more details as to your topology.




This Discussion