I am using CCP to (hopefully) configure some 891W routers where by each router is the internet gateway for a branch office, with one of them being the gateway at the head office. My goal is to set them up as typical Internet gateways, that is, having afirewall, IPS, NAT to allow the internal network to get online etc., plus to do some port forwarding for services like RDP to a server. However I also need to implement site to site VPN's in a hub/spoke config (head office as the center, the branch offices each connected into the head office).
So my questions are these:
1. Can the Site to Site VPN feature within CCP ultimately result in a VPN setup where there are a handlful of branch offices all connected itno head office? When configuring VPN on the head office router in CCP, it asks for the IP address on the other end. This tells me it's a one to one relationship. Does that mean I'd create one VPN tunnel for each office pair? Thus resulting in say, 6 VPN's created on the head offie router?
2. Does it matter when the firewall and NAT wizards are run? Example, I do a basic router setup, configuring say, a non-default SSH port. When I run the firewall wizard, will it recognize my custom settings or will it just slap a defalt set of policies on there? So the question being, is the firewall wizard smart enough to take your existing config and modify policies accordingly. Same question for NAT as it changes the firewall a lot too.
Hi everyone, I would like to thank you in advance for any help you can provide a newcomer like myself!
Im studying the 100-105 book by Odom and am currently on the topic of Port security. I purchased a used 2960 and I'm trying to follow a...
While deploying a number of 18xx/2802/3802 model access points (APs), which run AP-COS as their operating platform. It can be observed on some occasions that while many of their access points were able to join the fabric WLC withou...
I am going to design and build an LAN network under a tunnel underground with long distance between the switches.
I will have 2 Catalyst switches and 8 Industrial IE3000, and they will be connected with fiber.
For now I am planning on use Layer-2 s...