This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Astaro as SSL server

We have project, where our customer want to make a lot of SSL VPN tunnels ~200-300 with different POS terminals. Each POS terminal has own certificate. Therefore it may be ~200-300 unique (with different characteristics – encryption & authentication algorithm, key size and so on) SSL VPN tunnels. We want to use Astaro as SSL server, providing that tunnels from POS terminals to hosts inside LAN.
All i know, that we may import CA in Astaro, so it may several VPN Signing CA (for example, from some host-servers) and import foreign client certificate (for example, from POS terminal). We has experimented today, but have problem with downloading configuration file to VPN client.
Does anybody knows - Astaro may work properly in situation like this?

This thread was automatically locked due to age.

Parents

0 BAlfson over 13 years ago

Roman, have you had any luck with this? I would think this would be a question to put to the maker of the POS terminals.

In any case, SSL VPN tunnels are very CPU-intensive. For 300 tunnels, you would need a Cluster of two ASG 525s in Active/Active. We use HP servers, so a much-less-expensive alternative would be Astaro software with two DL160 Gen8 E5-2640 16GB (2P) (dual six-core processors) in Hot-Standby.

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 BAlfson over 13 years ago

Roman, have you had any luck with this? I would think this would be a question to put to the maker of the POS terminals.

In any case, SSL VPN tunnels are very CPU-intensive. For 300 tunnels, you would need a Cluster of two ASG 525s in Active/Active. We use HP servers, so a much-less-expensive alternative would be Astaro software with two DL160 Gen8 E5-2640 16GB (2P) (dual six-core processors) in Hot-Standby.

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data