I would deploy ISR G2's or ASR 1K's at each branch office and the hub, depending on whether you want a hub-and-spoke topology or a full-mesh. Your router of choice of course also depends the amount of crypto you need to forward.
I would you use OSPF in between the 3750X's and the branch/hub routers across the tunnels, but that kinda depends on what flavour of IGP you'd prefer. BGP is also an option, but if you have several sites, you might want to look into route-reflection, as configuring a BGP full-mesh with tons of routers can get rather .. dull :)
Soren, you've been fantastic! Thank you for your help. I'm much more comfortable in a design now. I was leading toward two ISR Routers for redundancy and failover capabilities. Along with 2 ASA 5515's and still use the 3750x's on the backend with the necassary VLAN's.
Hi, I know the basics for Cisco routers and switches but what I want to
know is, if I set up VTP on a switch, is there a way to send it through
routers to other switches? This will probably end up more hassle than
gain, but it's interesting and cool to pl...
Hi I have this primary configuration on the primary CSR Router in the HA
mode in same AZ but I am not seeing failover to secondary CSR I am
seeing on the backup router that the API call was successful. 10 10 Actv
success Thu Jun 9 18:13:50 2016 syslog app...