I have 5 geographically dislocated offices that each have their own Internet connection. The customer is in the banking industry and needs to be able to securely communicate between each of the five offices. Each office currently has it's own Firewall and associated rule set. I would like to do IPsec and 3DES for this customer and implement a central firewall policy server at the HQ office. Where do I start?
Im going under the assumption that each of the firewalls currently installed are Cisco PIX firewalls. If they are PIX firewalls its pretty simple to implement a 3DES secure VPN from each site to each other. Before you start there are going to be a bunch of question that you need to supply your self with answers first before you start.
At least my initial question were:
I recommend reading up on IPSEC first. There is nothing worst that trying to implement something without knowing all or your options; such as do I use pre-share or a PKI infrastructure.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
[toc:faq]Introduction:This document describes details on how NAT-T
works.Background:ESP encrypts all critical information, encapsulating
the entire inner TCP/UDP datagram within an ESP header. ESP is an IP
protocol in the same sense that TCP and UDP are I...