Cable modems, DSL routers, and other forms of broadband access provide
high-performance connections to the Internet, but many applications also
require the security of VPN connections that perform a high level of
authentication and that encrypt the data between two particular endpoints.
However, establishing a VPN connection between two routers can be complicated
and typically requires tedious coordination between network administrators to
configure the VPN parameters of the two routers.
The Cisco Easy VPN
Remote feature eliminates much of this tedious work by implementing Cisco Unity
Client Protocol, which allows most VPN parameters to be defined at a Cisco Easy
VPN server. This server can be a dedicated VPN device, such as a Cisco VPN 3000
concentrator a PIX Security Appliance, or an IOS router that supports the Cisco
Unity Client Protocol.
After the Cisco Easy VPN server has been
configured, a VPN connection can be created with minimal configuration on an
Easy VPN remote client, such as a Cisco 800 series router or a Cisco 1700
series router. When the Easy VPN remote initiates the VPN tunnel connection,
the Cisco Easy VPN server pushes the IPSec policies to the Easy VPN remote and
creates the corresponding VPN tunnel connection.
The Cisco Easy VPN
Remote feature provides for automatic management of the details shown in Figure
.