VPN Technologies

At work we are looking at moving over to a new ISP, so will take the opportunity to deploy a new edge module to replace are current crumbling poorly designed mess (implemented before i started i might add!)

Part of this will be looking at alternative VPN solutions, at the moment we use a pair of ASA’s in the UK, and 1801 routers at our remote sites, they are running Site-to-Site IPsec Crypto Maps, with static routes pointing at the ASA’s.

My problem with this setup is the interesting traffic ACL’s, they always cause a headache, they never work right first time, and can be a pain to troubleshoot, and then there’s the NATting issues….

Read more of this post