What are the benefits of seperating network firewall and VPN services?

Learn the two cases where separating a client's network firewall and VPN functions can be a significant benefit to an organization.

Published: 07 Nov 2007

Most network firewalls have built-in VPN functionality. Is it a good idea to run both on the same system? If not, how do I make the case to my customer to have two separate devices?

Separating network firewall and VPN functions can be a significant benefit to an organization in two scenarios.

The first scenario is a large IT security team with groups separated by function -- for example, one group manages firewalls, and another manages the VPN. By separating the network firewall and VPN functions, each group can enjoy autonomy in its administrative functions.

The second scenario is an environment in which performance requirements for the network firewall and VPN system are such that running both on the same device isn't feasible. In this instance, the separation of these functions adds significant performance advantages.

What are the benefits of seperating network firewall and VPN services?

Learn the two cases where separating a client's network firewall and VPN functions can be a significant benefit to an organization.

Dig Deeper on Managed network services technology

Explore Google XPN for virtual private cloud networks

SSL VPN evaluation, implementation and management guide for India

Should a firewall ever be placed before the router?

DMVPN configuration: Should a firewall be between router and Internet?