Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
310
Views
4
Helpful
1
Replies

Cisco VPN Concentrator

csaravanan
Level 1
Level 1

‎10-02-2006 12:58 PM

Hello,

I am new to cisco vpn concentrator. I am going to place my concentrator after my Cisco 2811 ISR firewall capable router

I have following questions

a) How will the concentrator allow regular traffic (i.e nonVPN traffic to flow through it to access the internal network)

b) Whether Concentrator is capable of performing NAT. I will have private IPs for my internal network and will concentrator do the NAT

c) Is concentrator an inline device or it can act like an other networking device

d) Does concentrator provide me firewall capablities

Labels:
0 Helpful
1 Reply 1

jwalker
Level 3
Level 3

‎10-03-2006 05:20 PM

Here are some brief answers to your questions..

a) Since the concentrator is not an inline device, regular traffic will flow in and out just fine when you put it in (it has one public interface and one private interface).

b) The concentrator translates incoming VPNs to their assigned VPN pool address. Then it gives access based on whatever networks are defined to go down the tunnel.

c) The concentrator is NOT inline, but it will need its own public IP.

D) The concentrator will NOT provide firewall abilities. However, if you buy an ASA, it works as a concentrator (not as good as a dedicated concentrator) and a firewall. I would recommend the ASA if you are more concerned with inbound/outbound access or if you don't already have a firewall. The VPN concentratores are solely for VPNs.

****Please rate if this helps at all*********

Thanks.

Customers Also Viewed These Support Documents