question

ElevenYu-MSFT avatar image
0 Votes"
ElevenYu-MSFT asked KarunKhanna-4030 commented

BranchCache implications for VPN

================= 
Hi
We're looking at implementing Branchcache in Distributed Mode for use with SCCM(Current Branch).
One of our concerns around doing this is: what effect does Branchcache have when our mobile users enable their Cisco AnyConnect VPN connection? 
I've found the following thread which indicates that "BranchCache is compatible with VPN software that supports split tunneling."
https://social.technet.microsoft.com/Forums/en-US/ea16f03a-a7a6-4209-8958-011eaf1320ad/branch-cache-on-vpn?forum=windowsserver2008r2branchoffice
How are other Engineers managing BranchCache for VPN enabled clients? - Real world experiences? Best practice?
Can we exclude the VPN subnet from being Branchcache enabled? If so, how do we do that?
Any advice would be much appreciated.
Thanks


TechNet forum original post link:
https://social.technet.microsoft.com/Forums/windowsserver/en-US/f7a5dcca-08ab-4a81-a84a-2a8175771934/branchcache-implications-for-vpn?forum=windowsserver2008r2branchoffice

windows-server
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

JiaYou-MSFT avatar image
0 Votes"
JiaYou-MSFT answered KarunKhanna-4030 commented

Welcome to our new Microsoft Q&A Platform.

hi,

BranchCache in distributed mode depends on multicast for discovery, and the packets have a TTL of 1 - so usually they would not be forwarded to other clients that are on VPN. CISCO VPN client doesn't support multicast traffic.

So BranchCache would attempt to do Peer to Peer but fail over to BITS and download from the DP in SCCM.

cheers

· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Few questions on Peer cache:

1) How should the content be managed in Peer cache sources ( any considerations to deploy the packages in terms of bandwidth)
How the deletion of content should be managed in peer cache sources?

2) Will VPN client boundary group utilize the peer caching , will just disabling the check box enough to make sure clients dont use peer cache.

3) Roll back plan for peer caching (just remove the client settings?)

4) Minimum HD/CPU/etc requirement for peer cache source?

0 Votes 0 ·