Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Remote VPNs

We have multiple clients to manage thiere IT infrasturcutre, till now we are accesing thier infrastructure through RDP and then we are accessing theire resources. Now we are decided to go for remote VPNs, as per my knowledge, in case of Remote VPNs i have to make the vpn client to connect desired client network everytime. Is there anyway to make VPN client to connect all the client networks at a time ?

2 ACCEPTED SOLUTIONS

Accepted Solutions
Super Bronze

Remote VPNs

Hi,

If you have a constant need to manage a customers IT and would like to have possibility to access them all without taking a new VPN Client connection every time, then I would suggest configuring a permanen L2L (Lan to Lan) VPN connection between your office and your customer office.

Ofcourse this sets requirements of the equipment both customer and your site has. You need to have a router/firewall capable of VPN connections on both ends. ASA5505 is the most basic model of the Cisco Firewall (although I guess soon to be replaced some new models) which could handle this situation on all sites.

But this ofcouse means much more costs and configuring than just using VPN Client. But then again you would be getting a pretty good setup. And you could just take your remote connection straigth from your offices to the customer.

You would ofcourse need to take into account the security, even when using VPN. You wouldnt still want to allow all traffic between the sites. So you would need limit the amount of access the customer networks have towards your own network and possibly also limit the connection you take towards their networks.

Pretty hard to say more not knowing your exact situation. But I do think that L2L VPN would be a good choice if in anyway possible.

- Jouni

Super Bronze

Remote VPNs

Hi,

They would be on their own subnets

The VPN would then make it possible to directly connect between these subnets

If the local subnets happen to overlap (or are the same) you could always use NAT to change the subnet thats visible to your or the customer network.

3 REPLIES
Super Bronze

Remote VPNs

Hi,

If you have a constant need to manage a customers IT and would like to have possibility to access them all without taking a new VPN Client connection every time, then I would suggest configuring a permanen L2L (Lan to Lan) VPN connection between your office and your customer office.

Ofcourse this sets requirements of the equipment both customer and your site has. You need to have a router/firewall capable of VPN connections on both ends. ASA5505 is the most basic model of the Cisco Firewall (although I guess soon to be replaced some new models) which could handle this situation on all sites.

But this ofcouse means much more costs and configuring than just using VPN Client. But then again you would be getting a pretty good setup. And you could just take your remote connection straigth from your offices to the customer.

You would ofcourse need to take into account the security, even when using VPN. You wouldnt still want to allow all traffic between the sites. So you would need limit the amount of access the customer networks have towards your own network and possibly also limit the connection you take towards their networks.

Pretty hard to say more not knowing your exact situation. But I do think that L2L VPN would be a good choice if in anyway possible.

- Jouni

New Member

Remote VPNs

Thanks for your reply Jouni. In this case, is cutomer network and our network of the same subnet ?

Super Bronze

Remote VPNs

Hi,

They would be on their own subnets

The VPN would then make it possible to directly connect between these subnets

If the local subnets happen to overlap (or are the same) you could always use NAT to change the subnet thats visible to your or the customer network.

278
Views
0
Helpful
3
Replies
CreatePlease login to create content