Single homed VPN solution?

Chris Brenton cbrenton at SOVER.NET
Mon Jan 24 10:09:49 EST 2000


Greetings all,

Here's what I'm running into. I have a site fed by a T3 that needs VPN
connectivity to approximately 30 sites on the Internet (this may climb
to 50 or more). The amount of traffic crossing the VPN is minimal, but
it is highly sensitive. I'm thinking what ever I go with needs to do
IPSec with triple DES.

The "bump" I'm running into is that these "boxes" can not disturb the
existing perimeter security (beyond rule modification to get the VPN to
flow of course). I'm looking at a mixed bad of firewall solution so I'm
not going to even try going the interoperability route. I'm looking for
a single homed solution that I can drop behind the existing perimeter,
make a few routing chances, and get the whole thing flowing. The "box"
at the main site needs to be scalable (obviously), there will only be
3-10 hosts per remote site so the "box" there can be minimal.

Any suggestions on what to go with here? I'm finding the number of
single homed solutions to be severely limited. Anyone run something
similar up to this scale before?

Any and all help appreciated,
Chris
--
**************************************
cbrenton at sover.net

* Multiprotocol Network Design & Troubleshooting
http://www.amazon.com/exec/obidos/ASIN/0782120822/geekspeaknet
* Mastering Network Security
http://www.amazon.com/exec/obidos/ASIN/0782123430/geekspeaknet

VPN is sponsored by SecurityFocus.COM




More information about the VPN mailing list