It would be my preference to create a 3DES VPN IPSec tunnel between 2 Cisco routers using ESP, DH group 2, and SHA. You could define interesting traffic via ACL to allow only the two servers to be encrypted and pass through the tunnel. Before making a final decision, I would certainly look at your current processes cpu and if your platform supports 3DES. Encrypting can take a toll on router resources. Remember, they can be pretty busy doing what they are designed to do.....route/switch packets. It would be even more preferable to terminate the tunnel on 2 Cisco PIX firewalls or 2 CheckPoint firewalls. Being able to terminate the tunnel on you Internet access device eliminates having to open protocol GRE on your outside interfaces for PPTP, etc. Just a few of my thoughts on the subject. HTH, MikeN wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > G'Day gang, > > Have a mate that has asked me the best way to create a VPN between office A > in > Geneva and office B here in Sydney. Only one server on each side needs to be > accessed by the other. Both servers are win2k. > Would it be best to create the VPN via > * Cisco routers establishing and maintaining the VPN > * Windows 2000 box's using their own VPN apps > * Other > > If any one has a how to on this I would also appreciate it. Any other > comments > are welcome. > > Thanks > John > [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=16624&t=16624 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
