It depends on how strong of encryption you want to use. If memory serves me correctly a 1700 series with an encryption module tops out at 1.544 mbits/sec(T1) while a 2600 with an encryption module maxes out at 4mbits/sec. These numbers are for for encrypted traffic bandwidth using 3DES. Another thing to consider is that DH key exchange with large keys (>768 bits) can take a "long" time on a 2500(TAC has it listed at up to 4 seconds). The main district office will probably need something a little more powerful then a 1700(2600/3600, PIX or VPN concentrator) in order to terminate 5 IPSEC vpn tunnels however, the remote schools would probably do just fine with a 1700(which is actually what the 1700 was designed for). Of course this is all based on max throughput. You could argue that all you need are 1700's if the combined throughput of the 5 remote connections would never exceed 1.544Mbits/sec.
HTH, Don Nguyen Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=41964&t=41924 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
