Hi,
I consider to change network topology from classic hub and spoke to full mesh VPN. The reason to do that is server-less concept and docker segmentation, which requires to allow communication between branch offices. Since it makes no sense to push all traffic via central location, I think full mesh is the best answer.
I don't want to discuss pros and cons of full mesh topology, but I would like to know which solution do you use in your companies. Let say that we are talking about two main locations and 50 branch offices, and direct communication between branch offices is required. Which vendor is the best in this scenario - Checkpoint? Fortinet? Cisco? Something else? I believe that automatic creation of S2S IPSec tunnels is not the option - so support for some routing protocol (BGP?) together with DMVPN is the essential requirement
No comments:
Post a Comment