I have been tasked with the implementation of a firewall and remote-access VPN solution.
We have procured a pair of ASA5520 firewalls with AIP-20 IPS modules. We also have procurred a 2811 router, with VPN module.
Which would be a better solution? To setup the remote access VPN's on the ASA firewalls, or on the 2811 router? I plan to place the router between the firewalls and the ISP.
It is my understanding, that you lose some functionality of the ASA devices when/if you configure them for VPN termination... I also want to utilize the IPS modules to monitor as much traffic as possible.