[c-nsp] How to terminate 100.000 IPsec VPN clients?
Arie Vayner (avayner)
avayner at cisco.com
Sun Sep 4 07:39:10 EDT 2011
Another option could be an ASR1K which can do quite a lot of IPSec.
I would most likely have looked into using a load balancer to load share
between multiple "servers", and just add more IPSec nodes as the scale
would require...
Arie
-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net
[mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Florian Bauhaus
Sent: Friday, September 02, 2011 16:55
To: cisco-nsp at puck.nether.net
Subject: [c-nsp] How to terminate 100.000 IPsec VPN clients?
Hello,
What would be the best way to terminate 100k IPsec VPN clients?
Use a 6500/7600 with appropriate modules? Put 10 ASA5580-20 in a rack?
How to manage the whole thing?
The clients won't make a lot of traffic so throughput isn't really a
matter.
I already got a few ideas on how to do this but I would like to know if
someone else got experience with this and could help me out a bit.
Best regards,
Florian
_______________________________________________
cisco-nsp mailing list cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
More information about the cisco-nsp
mailing list