Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Is it possible?

Status
Not open for further replies.

ngtri

Programmer
Dec 7, 2004
53
NO
Hello everyone

We have a problem and not sure how to solve.

Today we have a network called "internet network": a main office and 3 branch offices are connected via WAN and using 1 cisco router at each office to build the DMVPN Tunnel. The main and the branches are working in the same LAN and both client PCs and server can surf internet


My company will create another network called "closed network" for the main and the branches by using the current WAN connection from the internet network.
It means that all servers and clients from this "closed network" have no internet access and data traffic has to encrypt in a high level encryption. Because it is a lot of sensitive information transmission between offices

Here is what we think:

1) Create a new VLAN10 on each cisco router
2) Build a new Tunnel by placing a firewall behind each router.

It means that we will build one tunnel inside another tunnel, but in different VLAN and encryption of data traffic.

Is it possible?

If it is possible. Which kind of firewall and encryption should you recommend us to use?

Hope you understand our thinking. Please give us some tips about how to deal with the problem
The most important for us is high security and solution

Thanks in advance

Try
 
Status
Not open for further replies.

Part and Inventory Search

Sponsor

Back
Top