Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

VPN design

Hi!!! i m really news to VPN and want to know lot of things........can any one plz help me mout....i m working in ISP....i have many clients dialup,dedicated point to point(E1)...if i want to deploy encryption between my self and my we r running E1 curcuit with one of our client so how come we gonna make VPN between his router and mine....what would b the configurations on each router and does it effect current routing of the router??? secondly why VPN concentrators r used??? i know its bit very basic but i have to take a steo toiwards ...plz help


Re: VPN design


Let me clarify that the VPN(encryption) mostly runs between the clients location and not between the ISP and the client.

Also theres no point in encrypting normal traffic which will only hog the hardware resources on both the sides.

you need to be choosy while selecting the interesting traffic which really requires security in other words to be encrypted.often its the transactions/transfers which happens between the client sites which is connected thru same SP or different SPs.

So the required encryption is applied on the client side routers for the interesting traffic (which u choose to be encrypted).

Again you need to have same parameters configured on both the ends to have proper encryption and decryption process to happen.

Also before establishing the virutal tunnel lots of parameters like the key,hash etc .,needs to be mutually agreed .

AFAIK with the VPN concentrators you can have RAVPN connections established.

You can have remote dialin clients onto the box getting an ip from the local internal network and start accesing the the internal network.

Also if you use clients on the remote site you can also configure dhcp pool assigned to the remote lan to access your internal network.

I will also suggest to check the data sheets of different models so that you can check out the various features it provides/supports..