Hello
I know this is off topic so I would not be upset if no one can help. I have
asked the following question to Cisco PDI and the response was rather "grey":
I have a potential customer who has two sites. At each site they currently have
a Cisco PIX firewall that provides firewall services with NAT, remote access
VPN to one site and a L2L VPN between the sites. Also, they have a Cisco 1700
router at each site that handles routing between the two sites over a E1 serial
link and routing towards the PIX firewalls. They only have one subnet at each
site. They want to move all the services running on the PIX and 1700s at each
site to Cisco 891 ISRs which they own already. The link between the sites will
become a 10MB leased line. I am concerned as to whether this 891 ISR's is
powerful enough for the features required. Also I would propose to use Zone
Based Firewalls on the ISRs and if this is the case am I right that as the ISR
is essentially a firewall I would have to create zones for the uplink
interfaces and apply policies.
I wander whether an ASA at each site would be a more suitable solution.
Paul
Confidentiality Statement
This email (and any attachment) is confidential and may be legally privileged.
It is intended solely for the use of the individual or entity to whom it is
addressed. If you received this message in error please tell us by reply (or
telephone the sender) and delete all copies on your system. Any review,
dissemination, distribution, copying or other use of this communication or the
information in it is strictly prohibited. The sender does not accept liability
for any errors or omissions
Whilst Nowcomm have taken reasonable precautions to ensure that any attachments
to this email has been swept for viruses, we cannot accept liability for any
damage sustained as a result of software viruses and would advise that you
carry out your own virus checks before opening any attachment.
HELP THE ENVIRONMENT - THINK BEFORE YOU PRINT! Do you really need to print a
copy of this email? If you do need to print remember to consider economy
printer settings.
_______________________________________________
For more information regarding industry leading CCIE Lab training, please visit
www.ipexpert.com
