Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Need Help with VPN Decision

Our Company has 4 offices. The total employee count for all offices is ~350. No expected growth. I want to have a cost effective solution to get rid of our Frame Relay (hub and spoke) and have Site to Site VPN's but also do Remote PIX best? Routers? Concentrators??

  • Other Security Subjects
New Member

Re: Need Help with VPN Decision

The answer to your Q is Yes. You have to come up with a policy for your company to use PIX fire wall at Central site and IOS routers at branch offices. You have to look at your current addressing scheme and decide if it is the best one to use. You have to decide as to how much of the traffic stays internal to your individual sites and how much is going through your current FR links. If you want a large number of sessions between your main office and other branch offices, you may need a VPN concentrator inaddition to a PIX fire wall at the central site.

You can create VPNs between PIX at central office and routers at remote sites. You can also use VPN clients on mobile users and connect to PIX and also to routers (IOS V12.2 and VPN client 3.5.1). Should you need more information, there are plenty of design documents on CCO and also SAFE document is available which will be helpful.

This widget could not be displayed.