Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
217
Views
0
Helpful
1
Replies

Need HELP on PIX, router, ADSL, VPN setup

agcastle2000
Level 1
Level 1

‎09-05-2007 09:43 AM - edited ‎03-03-2019 06:37 PM

Hi Top NetPros & Cisco engineers.

Sorry if this doesn't fit in here.

We have a 1721 and PIX 515E. 1721 has serial (128Kbps) and ADSL (1MB/128Kbps) connections. Through PBR, PAT'ed traffic from PIX is routed to ADSL. Domino replication, SMTP and IPSec VPN connections to 3 sites are what using the Internet Leased Line.

VPN is terminated outside PIX. Accessing a critical web application on other site is very slow.

This is what I'm thinking to resolve the issue.

* Remove the existing VPN connection from the PIX to the site where the web application is running.

* Use ADSL for the VPN instead.

* 1MB/128Kbps is the max ADSL speed the ISP offers. For more bandwidth, get another ADSL line. 1721 has no spare slots so it has to be replaced so serial & 2 ADSL can be connected.

Queries/concerns:

1. Is it possible that one ADSL will be only for outbound http, FTP,etc and dedicate the other ADSL for VPN only?

2. With VPN terminated on ADSL, the traffic passing between the router and the firewall is not encrypted.

Please feel free if you have better solution.

Thanks in advance.

Labels:
0 Helpful
1 Reply 1

umedryk
Level 5
Level 5

‎09-11-2007 10:10 AM

To ensure a secure tunnel connection, the Cisco Easy VPN Remote feature does not support transform sets that provide encryption without authentication (ESP-DES and ESP-3DES) or transform sets that provide authentication without encryption (ESP-NULL ESP-SHA-HMAC and ESP-NULL ESP-MD5-HMAC)

http://www.cisco.com/en/US/products/ps6350/products_configuration_guide_chapter09186a0080455b7d.html

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card