IPSEC tunnels in IOS router or ASA Appliance

Unanswered Question
Jul 9th, 2009
User Badges:


Please can somebody highlight as to why I shall use ASA appliance for VPN tunnels rather than using any Cisco IOS appliance that supports VPN ?which one is preferred and why


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Collin Clark Thu, 07/09/2009 - 06:59
User Badges:
  • Purple, 4500 points or more

A router uses it's processor to encrypt/decrypt packets which could be detrimental. You can purchase an AIM card which offloads that into hardware. The ASA already has that. Either will work just fine. I usually decide but what else the device will have to do (ie mcast, advanced routing, netflow).

Hope that helps.

srue Fri, 07/10/2009 - 05:10
User Badges:
  • Blue, 1500 points or more

if you need advanced routing or QoS go with a router, otherwise, i prefer the ASA because it's already a hardened device.

also, since you weren't specific, other reasons one might choose a router is that it can do GRE and DMVPN.


This Discussion