The purpose of HSRP (Hot Standby Routing Protocol) is to check interfaces and other connectivity parameters, and if the interface is down then a failover takes place from Active HSRP Router to standby HSRP router. There is no direct correlation between HSRP and IPSEC. However, we can use HSRP to provide VPN tunnel failover, as […]
Cisco IPsec Tunnel vs Transport Mode with Example Config
IP Security (IPsec) is a framework of open standards developed by the Internet Engineering Task Force (IETF). IPsec provides security for transmission of sensitive information over unprotected networks such as the Internet. IPsec acts at the network layer, protecting and authenticating IP packets between participating IPsec devices also known as IPsec peers. IPsec has two […]
Cisco DMVPN Configuration Example
Dynamic Multipoint VPN (DMVPN) is a Cisco VPN solution used when high scalability and minimal configuration complexity is required in connecting branch offices to a central HQ Hub site. DMVPN is one of the most scalable and most efficient VPN types supported by Cisco. It is used almost exclusively with Hub-and-Spoke topologies where you want to have […]
Site to Site IPSEC VPN Between Cisco Router and Juniper Security Gateway
In today’s network infrastructures, you will encounter multivendor devices that need to communicate and interoperate. One requirement that you will find frequently in your work environment is to establish a secure VPN connection over the public internet between two different vendor devices. As a network engineer you need to know that the best VPN technology […]
Site-to-Site IPSEC VPN Between Cisco ASA and pfSense
IPSEC is a standardized protocol (IETF standard) which means that it is supported by many different vendors. Therefore if you want to create a VPN between different vendor devices, then IPSEC VPN is the way to go. In this article we will see a site-to-site VPN using the IPSEC protocol between a Cisco ASA and […]
Site-to-Site IPSEC VPN Between Two Cisco ASA – one with Dynamic IP
Cisco ASA 5500 Series appliances deliver IPsec and SSL VPN, firewall, and several other networking services on a single platform. Cisco ASA 5520, a member of the Cisco ASA 5500 Series, is shown in Figure 1 below. Figure 1 Cisco Adaptive Security Appliance (ASA) In this article, we will focus on site-to-site IPsec implementation between […]
Cisco VPN Configuration Guide – By Harris Andrea
I wanted to let you know about my new eBook “Cisco VPN Configuration Guide” which I have launched recently. This ebook (PDF Format) consists of 240 pages filled with raw practical concepts, step-by-step configuration tutorials, around 40 colorful network diagrams to explain the scenarios, troubleshooting instructions, 20 complete configurations on actual devices etc. There is […]
Which Cisco VPN Topic Are you Interested in – Vote Below
Recently I have been thinking to write a new Cisco book which will be about Cisco VPN configuration. The topic of Virtual Private Networks (used to connect remote sites together over the Internet or to allow mobile users to establish remote access connections to their corporate network resources) is a hot topic in networking. I […]
Site to Site VPN with Dynamic Crypto Map
In this post I will talk about Hub-and-Spoke VPN with one dynamic and two static crypto-maps between Cisco routers. The scenario is as following: There is a central HQ site which will be the Hub of our VPN network and also two branch sites which will be the spokes in our VPN network (see diagram […]
Configuring AnyConnect WebVPN on Cisco Router (With Example Config)
In this post I will explain how to configure WEB VPN (or sometimes called SSL VPN) using the Anyconnect VPN client on a Cisco 870 router. However the configuration example and concept is the same for other Cisco router models as well. Web Based VPN has three Remote Access modes: Clientless – You connect to […]
Overview of Cisco ASA VPN Technologies and Types
Cisco supports several types of VPN implementations on the ASA but they are generally categorized as either “IPSec Based VPNs” or “SSL Based VPNs“. The first category uses the IPSec protocol for secure communications while the second category uses SSL. SSL Based VPNs are also called WebVPN in Cisco terminology. The two general VPN categories […]
VPN Config Generator-Software to create Cisco VPN Configurations
For most network engineers, one of the most difficult and tricky features to configure on Cisco equipment is to properly setup a VPN communication network. I have realized that from the numerous emails and questions I get almost every day from readers of my blog and in my workplace as well. Cisco is one of […]
Cisco SSL VPN and ASDM Configuration – Port Conflict
In addition to IPSEc VPN support, Cisco firewalls support also the SSL Web VPN technology for providing access to resources for remote users. The main difference between IPSEc VPN and SSL VPN is that the first one requires a VPN client installed on the user’s computer while the SSL VPN requires only a secure browser (HTTPs). Another […]