Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

VPN Termination on Routers Vs on Firewalls or VPN Concentrators

Hi,

Talking about terminating VPN on routers versus on security devices like ASA or VPN concentraors, I think performance wise, teminating VPN on specialized device would give better result. What do you think?

Please tell what pros and cons would each option have over the other one.

Regards,

Haitham

2 REPLIES

Re: VPN Termination on Routers Vs on Firewalls or VPN Concentrat

Hi

The vpn3000 is going EOS so dont go there. The concentrator is a good box for remote access IPSec vpn.

The router platform is a good box to do lan to lan vpn tunnel since you can take advantage of the routing features. It's not really nice to configure for remote access.

Pix was not really good in anything.

The ASA is the platform a choice for future remote access. It's the replacement for vpn3000 and can do IPsec and SSL at a decent rate.

New Member

Re: VPN Termination on Routers Vs on Firewalls or VPN Concentrat

Hi,

So, if I would like to implement a site-to-site VPN what is more preferred and secure to implement the VPN on the router itself or on the ASA?

How is the ASA better than the PIX in VPN? I am talking here about PIX OS ver 7.x, or is there HW enahancement in the ASA that is not there in the PIX?

Regards,

Haitham

144
Views
0
Helpful
2
Replies
CreatePlease login to create content