Network Bulls
www.networkbulls.com
Best Institute for CCNA CCNP CCSP CCIP CCIE Training in India
M-44, Old Dlf, Sector-14 Gurgaon, Haryana, India
Call: +91-9654672192
Cisco provides a suite of VPN-optimized routers. Cisco IOS Software that is running on
Cisco routers combines rich VPN services with industry-leading routing, thereby delivering
a comprehensive solution. The Cisco VPN software adds strong security through
encryption and authentication. These Cisco VPN–enabled routers provide high
performance for site-to-site, intranet, and extranet VPN solutions. Figure 8-6 shows how
routers can be used to provide VPN solutions.
Figure 8-6 VPN on Cisco IOS Routers
Internet
Main Office
Cisco Router
SOHO
Cisco Router
Regional Office
Cisco Router
Remote Office
Cisco Router
306 Chapter 8: Extending the Network into the WAN
For VPN services, Cisco ASA 5500 Series adaptive security appliances offer flexible
technologies that deliver tailored solutions to suit remote-access and site-to-site
connectivity requirements. ASA 5500 Series adaptive security appliances provide easy-tomanage
IPsec remote access and network-aware site-to-site VPN connectivity, enabling
businesses to create secure connections across public networks to mobile users, remote
sites, and business partners. Figure 8-7 shows how Cisco ASAs can be used to provide VPN
solutions.
Figure 8-7 VPN on Cisco Adaptive Security Appliances
The ASA 5500 Series offers both IPsec and SSL VPN on a single platform, eliminating the
need to provide parallel solutions. In addition to VPN services, the ASA 5500 Series offers
application inspection firewall and intrusion prevention services.
Cisco remote-access VPNs are able to use three IPsec clients: the Certicom IPsec client, the
Cisco VPN Software Client, and the Cisco VPN 3002 Hardware Client. Details are as
follows:
■ Certicom client: A wireless client that is loaded onto wireless personal digital
assistants (PDA) running the Palm or Microsoft Windows Mobile operating systems.
Certicom wireless client software allows companies to extend critical enterprise
applications, such as e-mail and customer relationship management (CRM) tools, to
mobile professionals by enabling handheld devices to connect to corporate VPN
gateways for secure wireless access.
Internet
Intranet
Remote Site Central Site
Extranet
Business-to-Business
Remote User
Introducing VPN Solutions 307
■ Cisco VPN 3002 Hardware Client (legacy equipment): A network appliance that is
used to connect small office, home office (SOHO) LANs to the VPN. The device comes
in either a single-port or eight-port switch version. The VPN 3002 Hardware Client
replaces traditional Cisco VPN Client applications on individual SOHO computers.
■ Cisco VPN Software Client: Software that is loaded on an individual's PC or laptop.
The Cisco VPN Client allows organizations to establish end-to-end, encrypted VPN
tunnels for secure connectivity for mobile employees or teleworkers. The Cisco Easy
VPN feature allows the Cisco VPN Client to receive security policies from the central
site VPN device (Cisco Easy VPN Server) when a VPN tunnel connection is made,
minimizing configuration requirements at the remote location.
No comments:
Post a Comment