I've been looking for a way to remotely access our network devices without having to configure IPsec tunnels everywhere. I remotely monitor and manage around 50+ networks globally and have been looking for an easier way but have come up short. TACACS+ says it's encrypted but does md5 even count? /s The higher end Nexus devices support aes it looks like but it might never happen for the IOS devices and non Cisco gear. Palo does it well with SAML support to IDP's but we are a mix of Cisco, Juniper, PA, Meraki and a few others. The overhead of IPsec and securing the traffic to prevent unnecessary access to the NOC and each other is a burden but I think there is no other choice at this point in time. What do you all use as a solution for this? I have read about RADIUS key wrapping but it doesn't look to be widely supported. Thanks in advance!
No comments:
Post a Comment