Branch Office & stores VPN tunnel security

Cisco Linksys 10/100 4-port vpn router r...
June 24, 2010 at 06:02:42
Specs: Windows xx
VPN question... I really need help here. To clear things up I'll give a schematic of our network layout.

We have 3 main offices and 12 stores. Every store has a VPN Tunnel to office 1 and office 2. Office 2 contains ALL of our servers for everything from backups to our pos system server. Office 1 and office 2 have a tunnel connecting them.

My question is this. I don't want the stores to be able to VPN into office 1 anymore, so I will drop every VPN connection to office 1 except for the connection to office 2. If the stores only tunnel in to office 2, will they be able to then follow the tunnel from office 2 to office 1? The VPN is router based on CISCO small business VPN routers.

This is very important as there are many security holes existing that must be eliminated very very soon.

Thank you in advance!!!


See More: Branch Office & stores VPN tunnel security

Report •

June 24, 2010 at 07:04:38
You don't say what is at office1.

"there are many security holes existing "

It does not sound like you setup this topology. It is always wize when on a new job to learn why things were setup the way they are before changing them. There has to be a reason for the two star vpn topologies since it took a lot of work and expense to set those up.

I would add that as a rule you don't change topology to address "security issues" You change ACL's and permissions.

As long as you don't add routing between the vpns they will continue to be point to points.

Report •

June 24, 2010 at 07:33:53
Thank you very much wanderer. You have been quite helpful. Much appreciated. If you ever have motorcycle questions, message me. :)

Report •

June 24, 2010 at 07:58:21
I will keep that in mind. :-)

Report •

Related Solutions

Ask Question