I wanted to let you know about my new eBook “Cisco VPN Configuration Guide” which I have launched recently.
This ebook (PDF Format) consists of 240 pages filled with raw practical concepts, step-by-step configuration tutorials, around 40 colorful network diagrams to explain the scenarios, troubleshooting instructions, 20 complete configurations on actual devices etc. There is no fluff or redundant information. There is a little bit (2-3 pages) of basic theory (especially on IPSEC Protocol) but other than that you will find only practical and real-world concepts and tutorials.
Moreover, by purchasing an electronic book instead of a regular hard copy book, you have the advantage of getting discounted updates of the material for life. Just make sure to subscribe to my email list after purchasing (a subscription form will be located at the download page) in order to be eligible for the low cost updates.
Cisco VPNs are mostly implemented on IOS Routers and ASA Firewalls. That’s why the “Cisco VPN Configuration Guide” covers VPN configurations on both of these two device types.
The prevalent VPN topologies that you will encounter in real-world (and are covered in the book) are the following:
- Site-to-Site VPNs (also called Lan-to-Lan VPN networks): Used to connect two distant LAN networks over the Internet or over any untrusted medium. Very common in Small Enterprise networks.
- Hub-and-Spoke VPNs: Several remote branch sites (Spokes) are connected with VPN to a central Hub site. Very common in Medium to Large Enterprise networks.
- User Remote Access VPNs (with VPN Client and Anyconnect SSL VPN): Offering connectivity of teleworkers and remote users to central network resources. Very common to any type of Enterprise.
- Full Mesh VPNs: All sites of a network can communicate with each other. This is usually implemented using Dynamic Multipoint VPN (DMVPN).
All of the above topologies are covered in the book. Also, variations of the above topologies with special scenarios are included. Some of the special cases that we will be covering include the following:
- VPNs with sites having Dynamic public IP.
- Implementations of hub-and-spoke together with remote access VPNs on the same device.
- VPN authentication using Microsoft Active Directory, Radius and RSA servers.
- Using Dynamic Routing Protocols (EIGRP) to make VPNs on Routers more scalable.
- Spoke to Spoke communication via the Hub Site (using VPN Hairpinning on ASA)
- Remote Access users to communicate with Spoke sites via the Hub (using VPN Hairpinning on ASA).
- Site-to-Site IPSEC VPN with duplicate subnets on the two sites.
- IPSEC VPN Failover with backup ISP.
- VPN between Router and ASA
The VPN protocols and technologies covered in the eBook include:
- IPSEC VPN
- GRE VPN with IPSEC Protection
- Virtual Tunnel Interface (VTI)
- Static VTI (SVTI) and Dynamic VTI (VTI)
- IPSEC VPN Client for remote access
- Cisco Anyconnect SSL VPN
Most Cisco VPN books out there are outdated (published around 2005) and they are also twice the price for what I’m offering right here. I believe that this VPN Configuration Guide will be a valuable resource for any Cisco Professional for years to come. Again, keep in mind that by purchasing this ebook you will be getting low cost updates of the book for life. Just make sure to subscribe to my “Customers’ email list” (at the download page after purchasing the book) in order to be eligible for the discounts on updated versions.