Hi all,
I have Juniper SRX300's at 8 sites and an ASA 5512-X at 1 site. Looking to set up VPN tunnels between all sites in a mesh. This will never need to scale beyond the 9 total sites. Would like no site to be dependent on another site for access to anyone else such as in a hub and spoke. Some sites also have terrible internet and latency.
I'm about to set up route-based VPNs - just create 8 /30's on every device (st0/vti) and configure BGP (Junos doesn't support OSPF over IPSec unless I'm mistaken?) I'm wondering if there's a more efficient way to do this? Any recommendations?
Thanks!
No comments:
Post a Comment