How to decide which VPN

[Ukraine1]

Hello experts,I have a general question for you guys.Please tell me how to select which vpn to apply among policy based and route based vpn.Iam bit confused.Can anyone please clarify I would be grateful.Thank you.

 

[Packet7]

Hi,

Policy based VPN's are simple to setup, but they have limitations. I would recommend using dial-up VPN betweens two firewalls without advanced routing. Anytime you need to add routing (Dynamic, Hub/Spoke, etc), I would go with route based VPNs.

Rgds,

John

 

[paella33]

I found route based easier to troubleshoot once setup, but that is a personal preference.

 

[desperado618]

I would imagine that deciding on whether or not to use packet filtering through the tunnel would also be a factor.

http://www.NetLeets.com

IT Security news and information
In plain English

 

[desperado618]

Route based VPNs do not reference a tunnel object lke policy based VPNs. When route lookup is performed, the Netscreen checks to see what interface should be used for the traffic. If the route points to a tunnel interface bound to a VPN, the traffic will be encapsulated and sent over the tunnel.


For more information on Route based VPNs, check out my forum post.

http://netleets.com/phpbb3/viewtopic.php?f=8&t=57&p=69#p69

http://www.NetLeets.com

IT Security news and information
In plain English

 

[desperado618]

Route based VPNs do not reference a tunnel object like policy based VPNs. When route lookup is performed, the Netscreen checks to see what interface should be used for the traffic. If the route points to a tunnel interface bound to a VPN, the traffic will be encapsulated and sent over the tunnel.


For more information on Route based VPNs, check out my forum post.

http://netleets.com/phpbb3/viewtopic.php?f=8&t=57&p=69#p69

http://www.NetLeets.com

IT Security news and information
In plain English