Recommended hardware for site-2-site connection with dual ISPs on each site
Can anyone give me a hint what hardware and technology has to be used to set up a connection from a central site to a remote site. On both sites there are two different ISPs with different bandwidths and reliability. Therefore loadbalancing should be achieved regarding the tunnels. Other features which are requested are:
- policy based routing for users on central site (group 1 should use ISP one and group 2 should use the other one with fallback if one the ISPs fails)
- terminating of remote access VPNs on the central site (possible on both ISP connections)
- the remote site should have direct internet access by split tunneling
- a DMZ interface for future use on the central site should also be provided
The customer already has a ASA5510 but not configured yet. Can this device be used for the setup in such way?
Re: Recommended hardware for site-2-site connection with dual IS
If you are going to add an E3 connection to an ISP, the router recommendation will obviously change to a 7200. There are many options for load balancing methods utilizing BGP for a dual-connectivity setup, so we may want to go through these when the time comes. We can use BGP metrics to force user traffic out a different link than the Web Banking traffic, such as AS path prepending.
DocumentationCode download linksGoalRequirementLimitationsSupported ISR
and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity
options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in
HA DocumentationCode download linksGoalRequirementLimitationsSupported
ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationCo...
Question I am currently unable to specify "crypto keyring" command when
configuring VPN connection on my cisco 2901 router. The following
licenses have been activated on my router :