Hello Everybody!
I am in the design phase of a project. I attached the designed topology.
The ISP of my customer is going to give 2 x 2 Mbps leased line with X.21 interfaces to the HQ.
To handle this I am going to offer SSG-20-SH + 2 × JXM-1SERIAL-S + 2 x JX-CBL-X21-DTE.
There will be ADSL Internet connections in the branch offices, so I am going to offer SSG-5-SB.
All Internet connections will have fix, public IP addresses.
However I am not sure how can I terminate IPSec site-to-site VPNs between HQ and 12 + 1 branch offices.
I think that I need 3 public IP addresses to the HQ: one for each serial interfaces and one for a loopback interface.
Is it possible to use the public IP address of the loopback interface for VPN initiation and termination?
I think I have to configure ECMP to use both links at the same time. How would it impact VPN operation?
Any idea, suggestions, references would be appreciated.
Thanks in advance,
Tamas