Wednesday, September 5, 2018

Firewall Under a Firewall for Remote Client VPN?

Long story short, we've bought a company that has a Juniper SRX220 at their Data center, which does not support Remote Client VPN.
They currently have VPN with a parent company via Cisco's Anyconnect, but that will not follow them.

They have many brand new ASA 5516-Xs in the box. We're looking at adding this to their data center to host VPN.

So basically, I'm thinking the packets will flow in this order:

DIA>Router>SRX2200>ASA 5516>Switch with cross connect to hosted VMware environment

I don't like adding a firewall under an existing, but apparently the company we've purchased is not comfortable to rebuild a whole new firewall in the short time we have to migrate things.



No comments:

Post a Comment