Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
525
Views
8
Helpful
4
Replies

Network equipment for small office

jmarsh
Level 1
Level 1

‎07-09-2008 08:27 AM - edited ‎03-06-2019 12:05 AM

Hello,

I am looking for suggestions for what to buy for connecting a small office to another small office via site to site vpn. I currently have an 871w in the larger office(25 users). Here is what I need to do.

1. Site to site vpn with new remote office(10 Users)

2. VPN for remote users, probably max of 4-5 at the same time

I also have a question about the firewall. I have the firewall set up on the 871w but should I purchase a seperate piece for firewall/VPN Management? ASA5505 or something along those lines? Is the firewall for 871w considered secure?

Thanks

Labels:
0 Helpful
4 Replies 4

stephen.stack
Level 4
Level 4

‎07-10-2008 08:10 AM

Hi,

I'm gonna answer your questions backwards, if you don't mind.

Firstly (or lastly) The Cisco 871 is a very secure Firewall/Device incorporating IPS and application layer filtering, for those nasty bugs. Some people really prefer a dedicated firewall device like the ASA for deep packet inspection etc... I personally like to keep things simple.

The Cisco 871 is an excellent site to site VPN device. Very easy to setup and monitor using Ciscos SDM software. However - be warned - Cisco IOS does not work well with some types of site to site VPNs and Remote Access VPNs (Cisco VPN Client -EasyVPN).

I have attempted such before to miserable failure. Only to forward PPTP traffic to a Microsoft RRAS server. (Any 2k/2k3 MS Server will do).

I am open to contradiction on this but using the EasyVPN in conjunction with a Site to Site VPN does not work well.

HTH - Please rate if it does.

Regards

Stephen

========================== http://www.rconfig.com A free, open source network device configuration management tool, customizable to your needs! - Always vote on an answer if you found it helpful

kplunkett512
Level 1
Level 1

‎07-14-2008 07:54 PM

Your 871 should be fine. You can go with an 851 at the remote site. We use 851's and 871's at all of our SOHO offices and have it going into a 2811 - works great for us. I have multiple RA VPN profiles and multiple site to site tunnels and they work great.

jmarsh
Level 1
Level 1
In response to kplunkett512

‎07-16-2008 06:53 AM

Thanks for all of the help.

0 Helpful

srue
Level 7
Level 7
In response to jmarsh

‎07-16-2008 11:20 AM

an asa5505 works well for terminating remote vpn users and site 2 site vpn's.

i agree, terminating both on IOS is a chore.

you can get the asa5505 fairly cheap at www.lanstreet.com

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card