WAN VPN Solutions. How Cisco Uses VPN Solutions to Extend the WAN. A Cisco on Cisco Case Study: Inside Cisco IT

Similar documents
How Cisco ASR 1000 Enables Cisco Business Strategies by Providing Capacity and Resiliency for Collaborative Applications

Deployment Scenarios

Cisco Dynamic Multipoint VPN: Simple and Secure Branch-to-Branch Communications

Logical Network Design (Part II)

Cisco Dynamic Multipoint VPN: Simple and Secure Branch-to-Branch Communications

Enterprise Network Building Security

Chapter 10: Planning and Cabling Networks

Enterprise Content Networking System

Deploying Cisco SD-WAN on AWS

Network Service Description

Enterprise Voic Deployment

High Availability WAN

How Cisco IT Deployed Cisco Firewall Services Modules at Scientific Atlanta

INNOVATION MINDSET DRIVES THE MOVE TO REPLACE MPLS WITH INTERNET SD-WAN

How Cisco IT Deployed Enterprise Messaging on Cisco UCS

Network Resiliency. VoiceCon Fall August John Bartlett. NetForecast. NetForecast, Inc.

MAN Architecture. How Cisco IT Architected Headquarters MAN. A Cisco on Cisco Case Study: Inside Cisco IT

CHAPTER. Introduction. Last revised on: February 13, 2008

Cisco NSH Service Chaining Configuration Guide

CCNA Questions/Answers IPv6. Select the valid IPv6 address from given ones. (Choose two) A. FE63::0043::11:21 B :2:11.1 C.

WHITE PAPER. How Virtualization Complements ShoreTel s Highly Reliable Distributed Architecture

PassReview. PassReview - IT Certification Exams Pass Review

Cisco WebEx Cloud Connected Audio Subscription Service

NETWORK ARCHITECTURE

Xceedium Xio Framework: Securing Remote Out-of-band Access

ROYAL INSTITUTE OF INFORMATION & MANAGEMENT

Intranets and Virtual Private Networks (VPNs)

Cisco SR 520-T1 Secure Router

Course 10233: Designing and Deploying Messaging Solutions with Microsoft Exchange Server 2010

SAN for Business Continuity

Designing and Deploying Messaging Solutions with Microsoft Exchange Server 2010

Cisco APIC in a Cisco ACI Multi-Site Topology New and Changed Information 2

E-Commerce. Infrastructure I: Computer Networks

CompTIA Network+ Study Guide Table of Contents

Virtual Private Networks (VPNs)

Cloud Leased Line (CLL) for Enterprise to Branch Office Communications

Truffle Broadband Bonding Network Appliance

Seven Criteria for a Sound Investment in WAN Optimization

A Single Cloud for Business Applications

Cisco Director Class SAN Planning and Design Service

Configuration for AT&T VPN Gateways 6300-CX

Data Center Interconnect Solution Overview

WAN Technology & Design. Dr. Nawaporn Wisitpongphan

VPN Cloud. Mako s SD-WAN Technology

Rediffmail Enterprise High Availability Architecture

Cisco Unified Messaging Gateway

Robust QAD Infrastructure Leveraging VMware and Netapp. Sekhar Athmakuri IT Manager

Q-Balancer Range FAQ The Q-Balance LB Series General Sales FAQ

Introduction to iscsi

31270 Networking Essentials Focus, Pre-Quiz, and Sample Exam Answers

THE WORLD S BEST- CONNECTED DATA CENTERS EQUINIX MIDDLE EAST & NORTH AFRICA (MENA) Equinix.com

Wireless LAN, WLAN Security, and VPN

Managing Site-to-Site VPNs: The Basics

Deploying the Barracuda Link Balancer with Cisco ASA VPN Tunnels

Network Services Internet VPN

West AT&T TXT Power Service Guide

Exam Code: Exam Code: Exam Name: Advanced Borderless Network Architecture Systems Engineer test.

How Cisco IT Migrated to Centralized Call Processing

Building Infrastructure for Private Clouds Cloud InterOp 2014"

The Cisco HyperFlex Dynamic Data Fabric Advantage

Scope and Sequence: CCNA Discovery v4.0

ENTERPRISE CONNECTIVITY

Securing the Empowered Branch with Cisco Network Admission Control. September 2007

CASE STUDY. Customer-at-a-Glance. Industry. Sophos Solutions. Fitas Flax Indústria e Comércio Ltda. Brazil. Manufacturing

How Cisco IT Is Accelerating Adoption of IPv6

Scalability Considerations

ATEMPO UNITED BACKUP EDITION DATA PROTECTION

Modeling an Application with Cisco ACI Multi-Site Policy Manager

VIRTUAL PRIVATE NETWORKS (VPN)

SD-WAN Transform Your Agency

2788 : Designing High Availability Database Solutions Using Microsoft SQL Server 2005

Reaping the Full Benefits of a Hybrid Network

VeloCloud Cloud-Delivered WAN Fast. Simple. Secure. KUHN CONSULTING GmbH

CASE STUDY: Borrego Health

IT245 ROUTING AND SWITCHING I

A-B I N D E X. backbone networks, fault tolerance, 174

Technology Master Plan Proposal

NetPro. from Wireless Logic. Available on a per SIM license basis. No CAPEX. Retain your Airtime Contracts with your existing providers

ON-LINE EXPERT SUPPORT THROUGH VPN ACCESS

Voice of the Customer First American Title SD-WAN Transformation

UPS system failure. Cyber crime (DDoS ) Accidential/human error. Water, heat or CRAC failure. W eather related. Generator failure

How Cisco Employees Communicate Visually with Anyone, Anywhere

Course 20741B: Networking with Windows Server 2016

PREREQUISITES TARGET AUDIENCE. Length Days: 5

Maximum Availability Architecture: Overview. An Oracle White Paper July 2002

ENTERPRISE CONNECTIVITY

NETLOGIC TRAINING CENTER

Network Monitoring and Management Update How Cisco IT Uses Cisco Remote Management Services to Enhance Network Operations

Cisco Cisco ADVDESIGN. Download Full Version :

Using Cloud VPN Service

Real-time Protection for Microsoft Hyper-V

Question No : 1 Which three options are basic design principles of the Cisco Nexus 7000 Series for data center virtualization? (Choose three.

Microsoft Design and Deploy Messaging Solutions with Microsoft Exchange Server 2010

Ethernet Wide Area Networking, Routers or Switches and Making the Right Choice

COURSE PROJECT SEM ATTENTION ALL ADVANCED DIPLOMA & BACHELOR STUDENTS

Exam: : VPN/Security. Ver :

SCALEFAST COMMERCE CLOUD INFRASTRUCTURE

This course prepares candidates for the CompTIA Network+ examination (2018 Objectives) N

Introduction to Networks Network Types. BTEC Nat IT Computer Networks

Building a Global VoIP Network. Michael Burrell, Senior Manager Orange Business Services. August 22, 2006

Transcription:

WAN VPN Solutions How Cisco Uses VPN Solutions to Extend the WAN A Cisco on Cisco Case Study: Inside Cisco IT 1

Overview Challenge Finding cost-effective alternatives to dedicated circuits connecting remote Cisco locations, partner locations, and regional locations in a disaster recovery scenario Solution Cisco IT has deployed cost-effective WAN VPNs to provide WAN connectivity to remote Cisco sites and partner locations, and for disaster recovery connectivity on critical WAN links 2

Overview (Contd.) Results Cisco IT has deployed WAN VPNs in every region of the world Next Steps Cisco IT will continue to evaluate its connectivity needs worldwide and employ WAN VPN technology when and where it makes business sense 3

Challenge Find Cost-Effective WAN Links Cisco IT needed Cost-effective and dependable alternative to dedicated circuits at remote company sites Cost-effective disaster recovery capability for the most critical WAN links Cost-effective alternative to dedicated circuits between Cisco and its partners that could be deployed quickly, using existing partner Internet access infrastructure 4

Solution Lower-Cost VPN Connections Cisco IT has deployed Internet (or WAN) VPNs for three types of applications: WAN links between Cisco offices Disaster Recovery between global regions Links between Cisco and partner locations 5

Solution VPNs as Primary WAN Links Cisco has deployed WAN VPNs as a cost-effective, dependable alternative to dedicated circuits at remote company sites Can be deployed in several configurations Primary connectivity with backup Primary connectivity without backup Backup connectivity with dedicated primary circuit 6

Solution Primary WAN Links (Contd.) Primary remote site VPN design Appropriate when dedicated circuits are cost prohibitive, but high availability is critical Consists of dual remote VPN routers and dual IPSec/GRE/VPNs Offers primary connectivity plus full redundancy Has not been deployed to date by Cisco IT 7

Solution WAN Links Between Cisco Offices (Contd.) Primary connectivity with single remote ISP Appropriate where uninterrupted availability is not as critical Consists of single remote VPN router connected to two headend routers at the regional hub using two IPSec/GRE tunnels Offers primary connectivity with limited redundancy Has been deployed in several locations including Anchorage and Honolulu in the United States, and in Costa Rica 8

Solution WAN Links Between Cisco Offices (Contd.) Backup connectivity with dedicated primary circuit Appropriate where dedicated primary circuit can be cost justified, but cost of dedicated backup circuit cannot Consists of single remote VPN router connected to a single headend router at the regional hub through a single IPSec/GRE tunnel and VPN Offers backup connectivity to dedicated primary circuit Has been deployed in several locations including Mexico City, Buenos Aires, and Rio de Janeiro 9

Solution Disaster Recovery Between Global Regions WAN links between major Cisco locations have been designed with redundancies Additional measures may be justified to protect links in catastrophic situations Cisco IT has deployed WAN VPN for disaster recovery between the United States and Europe, using existing Internet access 10

Solution Links Between Cisco and Partner Locations Cisco has deployed WAN VPNs as a cost-effective, dependable alternative to dedicated circuits between Cisco and partner locations Benefits of VPN extranet connectivity include: Eliminating cost of WAN circuits used in traditional extranet connectivity Eliminating hardware costs for internal clients Accelerating implementation Facilitating short-term extranet connectivity or fast location moves Supporting partner telecommuters with user-based VPNs 11

Solution Links Between Cisco and Partner Locations (Contd.) Deployed in approximately 50 locations, in one of two models Extranet Remote LAN model Interconnect model 12

Solution Links Between Cisco and Partners (Contd.) Extranet Remote LAN model An extension of the Cisco network at the partner site Router managed by Cisco at the partner site terminates transport connectivity from Cisco Currently connects about 20 partner sites 13

Solution Links Between Cisco and Partners (Contd.) Interconnect model Partners connect through their corporate LAN, which connects with the Cisco LAN Respective firewalls protect each company s resources Cisco translates partner IP addressing into Cisco addresses using NAT More than 30 partners currently use Interconnect VPN 14

Results Summary Cisco IT has deployed WAN VPNs in every region of the world To provide cost-effective primary or backup connectivity, or both to remote sites To deliver disaster recovery capabilities along the most critical WAN routes To connect partner sites to the Cisco internal network in a speedy and cost-effective manner 15

Results Summary (Contd.) VPNs are useful where they are usually lower cost in comparison to the bandwidth Sometimes a tradeoff exists with more frequent outages and a greater difficulty in troubleshooting outages, especially when there are multiple ISPs involved in providing service 16

Next Steps Summary Continue to evaluate connectivity needs worldwide and employ WAN VPN technology when and where it makes business sense Upgrade remote WAN VPN sites from Cisco 3640 to newer Cisco 3745 routers as budget and time permits Consider, on a case-by-case basis, extending disaster recovery WAN VPNs to other regional hub sites, but no immediate deployment plans in place 17

Next Steps Summary (Contd.) Regional regulatory issues and concerns about quality of service will likely limit the use of WAN VPNs throughout the Asia-Pacific region in the near future to more infrastructure-challenged areas and to extranet applications Add new extranet VPN endpoints to Cisco locations other than San Jose, California, where appropriate 18

To read the entire case study, or for additional Cisco IT case studies on a variety of business solutions, visit Cisco on Cisco: Inside Cisco IT www.cisco.com/go/ciscoit 19

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback