I have a feeling that most if not all of the requirements you have could be
achieved with a Cisco ISR router running some kind of FlexVPN/DMVPN setup
back to a network VPN hub. The ISR G3 series has the option of enabling a
built in firewall/IPS. You'd need a RADIUS solution to authenticate the VPN
There is a downside to subscription pricing for the vendor: they don't get the
instant cashflow they're used to. I know Cisco seems to be taking a tactic
where only some product lines use subscriptions and the others are on a typical
enterprise 3-5 year replacements cycle to provide Cisco with t
On Wed, 2016-06-29 at 16:00 -0700, Seth Mattinen wrote:
> I often wonder if Microsoft will someday make Office365 the only way
> to get Office, which if you don't maintain a subscription your
> locally installed copy of Word will cease to function.
I live for that day.
Regards, K.
--
~
On 6/29/16 15:33, Eric Kuhnke wrote:
My biggest issue with Meraki is the fundamentally flawed business model,
biased in favor of vendor lock in and endlessly recurring payments to the
equipment vendor rather than the ISP or enterprise end user.
You should not have to pay a yearly subscription fe
I treat Meraki like SmartNET. The subscription comes with lifetime support
(TAC + Warranty), you do have support on your production network gear don't
you? It's not like they trick you going into it either. I for one am a huge
fan of the simplicity, it just works.
Disclaimer: We use them. ~35 acce
My biggest issue with Meraki is the fundamentally flawed business model,
biased in favor of vendor lock in and endlessly recurring payments to the
equipment vendor rather than the ISP or enterprise end user.
You should not have to pay a yearly subscription fee to keep your in-house
802.11(abgn/ac)
2016 6:28 PM
> To: Karl Auer
> Cc: nanog@nanog.org
> Subject: Re: automated site to site vpn recommendations
>
> I would second Meraki for the situation you describe. I don't feel that
> they are the most capable platform, they're expensive, and don't always
> present
anks again.
> From: r...@tehorange.com
> Date: Wed, 29 Jun 2016 09:03:06 -0400
> Subject: Re: automated site to site vpn recommendations
> To: p...@nashnetworks.ca
> CC: nanog@nanog.org
>
> For several of our clients, we use Sophos UTMs coupled with their RED
> units. Once reg
For several of our clients, we use Sophos UTMs coupled with their RED
units. Once registered with the UTM, the RED unit auto creates an SSL
based VPN back to the UTM. The RED unit is managed from the UTM and pulls
it's config when it boots. It's similar to the function of Meraki without
the direc
tled 3"
Subject: Re: automated site to site vpn recommendations
My biggest issue with Meraki is that their tech staff can run tcpdump on the
wired or wireless interface of your Meraki box without having to leave their
desk. I have no reason to believe that they are malicious, or in the pay
My biggest issue with Meraki is that their tech staff can run tcpdump on the
wired or wireless interface of your Meraki box without having to leave their
desk. I have no reason to believe that they are malicious, or in the pay of
the NSA, but I am too paranoid to allow their equipment anywhere
t the cheapest solution, but for sure they get the job done.
Regards,
Richard.
-Original Message-
From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Dan Stralka
Sent: Monday, June 27, 2016 6:28 PM
To: Karl Auer
Cc: nanog@nanog.org
Subject: Re: automated site to site vpn recommendatio
I would second Meraki for the situation you describe. I don't feel that
they are the most capable platform, they're expensive, and don't always
present you with all the information you'd need for troubleshooting.
However, the VPN offers great dynamic tunneling, instant-on performance,
and are by fa
Fortinet has stuff that does this that is non-IT friendly.
On Mon, Jun 27, 2016 at 4:59 PM, Karl Auer wrote:
> On Mon, 2016-06-27 at 13:08 -0700, c b wrote:
> > In some cases...
>
> The words "in some cases" are a problem with any supposedly plug and
> play solution.
>
> > We really could use a
On Mon, 2016-06-27 at 13:08 -0700, c b wrote:
> In some cases...
The words "in some cases" are a problem with any supposedly plug and
play solution.
> We really could use a simple solution that you
> just flip on, it calls home, and works...
...but still requiring someone to enter credentials of
a couple of Z1s
the cost isn't too bad.
Shawn
-Original Message-
From: "c b"
Sent: Monday, June 27, 2016 4:08pm
To: "nanog@nanog.org"
Subject: automated site to site vpn recommendations
Situation: We have salespeople/engineers holding temporary
semin
Situation: We have salespeople/engineers holding temporary
seminars/training/demonstrations in hotel meeting rooms.
Requirements:
field people need a very plug-n-play, simple, reliable vpn back to corporate
offices to present videos/slides/demonstrations. The materials are not
accessible via th
17 matches
Mail list logo