I'm working on a design in which 150 remote sites equiped with cisco 1720 series routers and using ADSL, are required to call into a host site. I'd like to use IPSEC for security over this public infrastructure. In my present design, the remote 1720 routers are attached to an ADSL network. These ADSL network conections are terminated on a Cisco 7204VXR at the central site. Beyond the 7204VXR (attached to its ethernet port) is a Cisco VPN3030. I was intending on using this with a CA server to allow scalable communication with the 150 remote 1720 routers. Is this the best device to use OR would a Cisco router using the IOS firewall feature set be more appropriate. From reading about this, it seems that the VPN 3030 is best suited to supporting remote customer devices with client software installed dialing in, as opposed to remote router-to-concentrator communications.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
[toc:faq]Introduction:This document describes details on how NAT-T
works.Background:ESP encrypts all critical information, encapsulating
the entire inner TCP/UDP datagram within an ESP header. ESP is an IP
protocol in the same sense that TCP and UDP are I...