Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

3DES VPNs with VoIP failover on ADSL 8Mb circuits

Anyone have a good value solution for the following requirements:

2 x office sites located ~20Km apart with 7 people in each office.

2 x ADSL circuits are being installed at each office. Performance 8Mbps downstream 768Kbps upstream contended 20:1 at best.

WAN Requirements:

Two tripleDES encrypted site-to-site VPN tunnels. The first VPN will service general office network data, call this VPN 1.

The second VPN must be dedicated for VoIP in order to service a 3rd Party non-cisco VoIP telephone system, call this VPN 2.

The VoIP system will have 15 users but assume maximum of 8 simultaneous VoIP calls.

Both tunnels should be always up once connected (keepalives). Whether this is serviced by a router with 2 ADSL interfaces, or just two DSL modems into

an ethernet router doesn't matter.

Failover from VPN 1 to 2 and vice versa is required, even though this may have an impact on VoIP performance i.e. number of calls allowed is reduced.

No load-balancing of the two links is needed.

Seven secure remote user dialup VPN's are also required, VPN's 3-10, for mobile workers to access the corporate network outside normal office hours.

Existing smoothwall linux firewalls are to be replaced with a suitable Cisco solution with a standard best practice security policy applied.

LAN Requiremets:

To service routers/firewall/desktops/servers/printers and any other network devices. 24port Gigabit copper switch at each office would be nice

but depends on total cost, they will settle for a 24 port Fast Ethernet switch at each office.

I'm considering 1841 router with dual HWIC-1ADSL interfaces and ASA5505 for VPN/Firewall with either a Catalyst 2960 model:WS-C2960-24TT-L or Catalyst 500 model:WS-CE500-24TT for local switching.

Can't decide whether to use ASA5505 for both firewall/VPN or split between 1841 router for VPN and ASA5505 for firewall? Which gives best VoIP performance?

All advice welcomed.

Dougie

1 REPLY
106
Views
0
Helpful
1
Replies