Upload File

cisco site-to-site technologies comparesion

prev
next
out of 1
Download Cisco Site-To-Site Technologies Comparesion

Upload: le-quang-ha

Post on 03-Jun-2018

216 views

Category:

Documents


0 download

Report

TRANSCRIPT

  • 8/11/2019 Cisco Site-To-Site Technologies Comparesion

    1/1

    Cisco Site-to-Site VPN Technologies Comparison At-A-Glance

    Cisco Systemsprovides the most feature-rich and flexible

    site-to-site VPN solutions in the industry. Ciscosite-to-site

    VPN solutions integrate advanced network intelligence and

    routing to deliver reliable transport for complex mission-critical

    traffic, such as voice and client-server applications, without

    compromising communications quality. These solutions are built

    on five underlying VPN technologies: Dynamic Multipoint VPN

    (DMVPN), Easy VPN, GRE tunneling, standard IP Security (IPsec),

    and the new Group Encrypted Transport VPN (GET-VPN). Each

    technology has it benefits and is customized to meet specific

    deployment requirements. Following is a comparison of the

    technologies and guidance on when to use them.

    Cisco GET-VPN Cisco DMVPN Cisco GRE-Based VPN Cisco Easy VPN Standard IPsec VPN

    Tunnel-less VPN Tunnel-based VPN

    CustomerBenefits

    Simplifies encryption integration on IP and MultiprotocolLabel Switching (MPLS) WANs

    Simplifies encryption management through use of groupkeying instead of point-to-point key pairs

    Enables scalable and manageable any-to-anyconnectivity between sites

    Supports quality of ser vice (QoS), multicast, and routing

    Simplifies encryption configura-tion and management for point-to-point GRE tunnels

    Provides on-demand spoke-to-spoke tunnels

    Supports QoS, multicast, androuting

    Enables transport ofmulticast and routing trafficacross an IPsec VPN

    Supports non-IP protocols

    Supports QoS

    Simplifies IPsec and remote-sitedevice management through dynamicconfiguration policy-push

    Supports QoS

    Provides encryptionbetween sites

    Supports QoS

    When to use Adds encryption to MPLS or IP WANs while preservingany-to-any connectivity and

    networking features

    Offers scalable, full-time meshing for IPsec VPNsEnables participation of smaller routers in meshednetworks

    Simplifies encryption key management while supportingrouting, QoS, and multicast

    Simplifies configuration for hub-and-spoke VPNs while support-ing routing, QoS, and multicast

    Provides low-scale, on-demandmeshing

    Use when routing must besupported across the VPN

    Use for same functions ashub-and-spoke DMVPN,but it requires moredetailed configuration

    Use when simplifying overall VPN

    configuration and management is

    the primary goal, but only limited

    networking features are requiredUse to provide simple, unifiedconfiguration framework for mix ofCisco VPN products

    Use when multivendorinteroperability isrequired

    Productinteroperability

    Cisco routers only Cisco routers only Cisco routers only Cisco, ASA 5500 Series, Cisco VPN 3000Series, and Cisco PIXFirewall

    Multivendor

    Scale Thousands Thousands hub and spoke;hundreds partially meshed spoke-to-spoke connections

    Thousands Thousands Thousands

    Provisioning andmanagement

    CLI, Cisco Security Manager Cisco Security Manager andCisco Router and Security DeviceManager

    Cisco Security Manager andCisco Router and SecurityDevice Manager

    Configuration automatically pushed toremote sites from headend; headendpolicies defined in Cisco SecurityManager or Cisco Router and SecurityDevice Manager

    Cisco Security Managerand Cisco Router andSecurity Device Manager

    Topology Hub and spoke; any-to-any Hub and spoke; on-demand spoke-to-spoke partial mesh; spoke-to-spoke connections automaticallyterminated when no traffic present

    Hub and spoke; small-scalemeshing as manageabilityallows

    Hub and spoke Hub and spoke; small-scalemeshing as manageabilityallows

    Routing Supported; Cisco GET-VPN any-to-any connectivity capa-bility can also be used to provide secure routing across anentire router backbone

    Supported Supported Not supported Not supported

    QoS Supported Supported Supported Supported, but QoS policy is not dynami-cally pushed to the remote sites

    Supported

    Multicast Natively supported across MPLS and private IP networks;tunneled across Internet-based WANs

    Tunneled Tunneled Not supported Not supported

    Non-IP Protocols Not supported Not supported Supported Not supported Not supported

    Private IP

    addressing

    Requires use of GRE or DMVPN with Cisco GET-VPN to

    support private addressesacross public Internet backbones

    Supported Supported Supported Supported

    High availability Routing Routing Routing Stateless failover Stateless failover

    Copyright 2006 Cisco Systems, Inc. All rights reserved. Cisco, Cisco IOS, Cisco Systems, and the Cisco Systems logo are registered trademarks or trademarks of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries. C45-376503-00 11/06


Cisco - Introduction to WAN Technologies 101

Building Fault-tolerant Site-to-Site VPNs with Cisco ASA

Cisco Nexus 9396PX Switch Site Preparation and Hardware ...images10.newegg.com/UploadFilesForNewegg/itemintelligence/Cisco/b... · Cisco Nexus 9396PX Switch Site Preparation and Hardware

Selene Communication Technologies v. CISCO Systems

VPN Site-To-Site Openswan Cisco - CentOS -IPSEC (2)

A Investigation of Cisco Technologies & Access Solutions

Cisco Prime Network Supported Technologies and Topologies, 4-3€¦ · Cisco Prime Network 4.3.1 Supported Technologies and Topologies 2 Supported Technologies in Prime Network Table

Cisco ERP CA Technologies MIS 501. Cisco and the Cloud

Unified Communications - Cisco€¦ · Presentation_ID © 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential 1 Unified Communications Cisco Technologies 2007

Cisco Site Survey Form

Cisco Aironet Wireless Site Survey - MIK Cisco Aironet... · Version 4.0 Student Guide ... Cisco Aironet Wireless Site Survey ... presentations highlighting both manual and assisted

Treatment Technologies for Site Cleanup: Annual Status ... · Treatment Technologies for Site Cleanup: ... The Twelfth Edition of Treatment Technologies for Site Cleanup: Annual Status

Formation Cisco CCNAliloodotnet.free.fr/R%E9seau/CCNA/boson%20(%20... · Formation Cisco CCNA Support de cours. Laboratoire Supinfo des Technologies Cisco Site : - Mail : [email protected]

Cisco VPN Solutions€¦ · VPN Overview © 2001, Cisco Systems, Inc. 2 Agenda • Introduction to VPNs • Cisco Remote Access VPN Solutions • Cisco Site-to-Site VPN

Cisco Global Site Selector Administration GuideCertified Internetwork Expert logo, Cisco IOS, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Cisco Unity,

Cisco Global Site Selector Administration Guide

Cisco IoT Technologies - d2zmdbbm9feqrf.cloudfront.netd2zmdbbm9feqrf.cloudfront.net/2015/usa/pdf/PSOIOT-2002.pdf · •Cisco IoT Technologies Portfolio ... Real-time Monitoring Energy

Cisco Global Site Selector

Site Planning and Maintenance Records - Cisco

Cisco Core, Advanced & Emerging Technologies

Cisco TelePresenceFor Cisco, the Cisco TelePresence Experience (CTX) is very important as any Cisco site is a showcase site CTX: Cisco TelePresence Experience standard is a must follow

Cisco Prime Network Supported Technologies and Topologies, 5 · Cisco Prime Network 5.0 Supported Technologies and Topologies 1 Supported Technologies in Prime Network Table 1-1 lists

Workshop Cisco IP Network Technologies

2013 Cisco Global Learning Partner of the Year Cisco Data ... · • Introducing Cisco Data Center Networking (DCICN) • Introducing Cisco Data Center Technologies (DCICT) Cisco

CCNA 1 - TPs - liloodotnet.free.frliloodotnet.free.fr/R%E9seau/CCNA/CCNA%201%20-%20... · CCNA 1 - TPs 3 / 36 Laboratoire SUPINFO des Technologies Cisco Site Web : – E-mail : [email protected]

Cisco IOS Dial Technologies Configuration Guide

Inside Cisco IT: Deploying Enterprise Network Technologies Live 2014 Melbourne/Cisco Live... · Inside Cisco IT: Deploying Enterprise Network Technologies ... and technologies and

CCNA 4 - TPs - liloodotnet.free.frliloodotnet.free.fr/R%E9seau/CCNA/CCNA%204%20-%20... · CCNA Module 4 - TPs 2 / 38 Laboratoire SUPINFO des Technologies Cisco Site : - Mail : [email protected]

CCNA 3 - Essentiel - · PDF fileCCNA 3 – Essentiel 3 / 50 Laboratoire SUPINFO des Technologies Cisco Site Web : – E-mail : [email protected] Ce document est la

implementing site to site vpns on cisco ios routers

Cisco Learning Network - Configure Site-To-site VPN

Cisco Aironet Wireless Site Survey - MIKdocstore.mik.ua/cisco/pdf/other/Knowledgenet Cisco Aironet Wireless... · CAWSS Cisco Aironet Wireless Site Survey Version 4.0 Student Guide

Cisco ERP CA Technologies

VPN site à site avec des routeurs CISCO

Data Center Site Selection(Cisco GSS)