Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
348
Views
4
Helpful
2
Replies

Security: Router vs Firewall

pinglis
Level 7
Level 7

‎09-23-2002 02:15 AM - edited ‎03-09-2019 12:25 AM

We are looking to set up Site to Site VPN solution to connect a few (~5) small sites to our WAN. Our service provider has proposed a solution based on 1700 routers with VPN modules (at both ends). At the head end they have also given us the option of a separate firewall between the Internet and the VPN router.

What are the additional security risks (if any) of not having the Firewall (it more than doubles the cost)? Does anyone know of any white papers etc detailling the pros and cons. I have looked at the Cisco SAFE documents.

Labels:
0 Helpful
2 Replies 2

awaheed
Cisco Employee
Cisco Employee

‎09-23-2002 02:57 PM

Hi,

Cisco SAFE documents should have details on these already, but for the most part Firewalls can provide you with layered Security, so even if the Routers could have been vunerable to a well organised attack, it will be almost impossible to make one happen with a Firewall and Access-lists applied on a Router, both implemented together to complement each other.

Hope this helps,

Regards,

Aamir

-=-=-

john.gudmann
Level 1
Level 1
In response to awaheed

‎09-24-2002 02:13 PM

Just one question? What are the deferens of use sing a 505 firewall and 1720 with IOS firewall (IP/FW/#DES). I mine in this setup it sounds like “overkill” to use both.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents