Hardening VPN Router

ronald.ramzy · ‎03-11-2009

Hi,

I have 3840 Router running Remote Access and L2L, I need to secure this router so that its only used for RA and L2L, can someone help with recommendation and any useful cisco links

JORGE RODRIGUEZ · ‎03-11-2009

You can start with this link

http://www.cisco.com/en/US/tech/tk648/tk361/technologies_tech_note09186a0080120f48.shtml

Regards

Jorge Rodriguez

ronald.ramzy · ‎03-12-2009

thanks for the link ; but I was looking for specific document to harden VPN Routers.

How to harden VPN Router which are dedicated for VPN Only....

cisco24x7 · ‎03-12-2009

The most secure way to harden your VPN routers is to put it behind firewall(s).

Encrypted traffics will pass through the firewall. After the traffics de-crypted by the VPN routers, they are then inspected by the firewall(s).

ronald.ramzy · ‎03-12-2009

Thanks for the reply.

But my scenario doesnt have PIx/ASA in front of it.

Since the traffic is going to pass through the tunnel configured on the VPN Router ; what could be the potential steps to allow traffic only via tunnel and rest block all traffic and protocols

I failed to find a cisco document to this common scenario; hope someone can help on this.

drewhughes · ‎01-13-2010

Hi Ronald, just wondering if you got anywhere with this, I have a similar problem myself.

Thanks