Our company is looking at hosting our software with an ASP model of distribution and we're looking at firewall hardware to protect our data center. My question is what is the difference between the number of concurrent sessions (which can be in the millions) and concurrent IPsec/VPN sessions (which is in the low thousands to ten thousand). We may need to serve up to 45,000 connections via a VPN. So we're looking for hardware that will support that.
Firewall – the difference between concurrent sessions and IPsec/VPN sessions
firewallhardwareipsecvpn
Best Answer
"Concurrent sessions" is more often called "concurrent connections", and refers to the number state-tracked (and possibly NAT translated) connections that the device can keep in memory at a given time; typically meaning TCP since it has state, but tracking is also needed for NAT-translated UDP and ICMP communication.