IPsec Virtual Private Network Fundamentals provides a basic working knowledge of IPsec on various Cisco routing and switching platforms. It provides the foundation necessary to understand the different components of Cisco IPsec implementation and how it can be successfully implemented in a variety of network topologies and markets (service provider, enterprise, financial, government).
In this chapter: The author provides a review of several common deployments of IPsec virtual private networks (VPNs). He covers typical site-to-site IPsec model over a dedicated circuit between two endpoints, then discusses some of the design implications as that dedicated circuit grows to include an entire routed domain. Learn about aggregation of many site-to-site IPsec VPNs at an aggregation point, or hub IPsec router, in a standard hub-and-spoke design and extend the IPsec aggregation concept to include Remote Access VPN (RAVPN) design considerations.
Excerpted from IPsec Virtual Private Network Fundamentals by James Henry Carmouche (ISBN: 1587052075).
Copyright © 2006 Cisco Press. All rights reserved.
This was first published in February 2009