Hardening VPN Router

Unanswered Question
Mar 11th, 2009


I have 3840 Router running Remote Access and L2L, I need to secure this router so that its only used for RA and L2L, can someone help with recommendation and any useful cisco links

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
ronald.ramzy Thu, 03/12/2009 - 04:36

thanks for the link ; but I was looking for specific document to harden VPN Routers.

How to harden VPN Router which are dedicated for VPN Only....

cisco24x7 Thu, 03/12/2009 - 06:12

The most secure way to harden your VPN routers is to put it behind firewall(s).

Encrypted traffics will pass through the firewall. After the traffics de-crypted by the VPN routers, they are then inspected by the firewall(s).

ronald.ramzy Thu, 03/12/2009 - 08:55

Thanks for the reply.

But my scenario doesnt have PIx/ASA in front of it.

Since the traffic is going to pass through the tunnel configured on the VPN Router ; what could be the potential steps to allow traffic only via tunnel and rest block all traffic and protocols

I failed to find a cisco document to this common scenario; hope someone can help on this.

drewhughes Wed, 01/13/2010 - 06:20

Hi Ronald, just wondering if you got anywhere with this, I have a similar problem myself.



This Discussion