The Practice of Network Security: Deployment Strategies for Production Environments

7.6. The VPN on the Network

There is some debate about the best place to terminate a VPN. Part of the debate originates from the fact that there are so many devices available for VPN termination. There are three common termination points for VPNs: router, firewall, and dedicated VPN device.

Each one has advantages and disadvantages. The right method of VPN termination is largely dependent on available resources, network design, and comfort level.

7.6.1. Terminating the VPN on the Router

Terminating the VPN on the router is not very common for enterprise networks. As already demonstrated, routers have notoriously bad logging facilities, and rely on external logging sources to log information. Adding the burden of encrypting and decrypting VPN ...

Get The Practice of Network Security: Deployment Strategies for Production Environments now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

The Practice of Network Security: Deployment Strategies for Production Environments by Allan CISSP Liska

7.6. The VPN on the Network

7.6.1. Terminating the VPN on the Router

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly