Re: Firebox: GRE over IPsec

Here's my situation: I got this new job as sysadmin for a company. They
have a network where there's a firebox III 700 as the main router and
another CISCO router placed somewhere in the DMZ with a box behind it.

When I asked why they had that CISCO 1711 they told me, because the
Firebox III 700 didn't support GRE over IPsec, they had to buy this
specific CISCO router to be able to do a "branch-to-branch" VPN with
the provider.

[p net]<==>[p router]<++>[o firebox]<++>[o cisco]<==>[o net]

== IP
++ GRE/IPsec
p Provider
o Our

what I would like (eliminate the cisco router):

[p net]<==>[p router]<++>[o firebox]<==>[o net]

Now it's the time to buy "spares" and I'm wondering if it's worth
buying another CISCO 1711 or we're wasting our money since the firebox
III 700 could do that VPN connection. I would like to test that
before making a decision. I'm not really familiar with setting
Branch-to-branch VPNs with GRE over IPsec with the Policy Manager. I'd
appreciate an example.
Received on Thu Sep 29 20:11:06 2005