Buy or Renew
Buy or Renew
COMING SOON: Umbrella and Secure Access release notes are coming to Cisco Community. The community will be in read-only August 16 – 19. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
351
Views
0
Helpful
1
Replies

GET VPN and MPLS LDP

jcarvalh
Level 1
Level 1

‎11-21-2014 03:46 AM

Hello,

I am trying to configure a topology in which the GMs of Get VPN topology also have LDP configured (the PE is also the CE); WAN interface has a crypto map configured and MPLS IP configured with traffic beeing label switched.

All works fine if I do not configure mpls ip at interface level; if I do, traffic is not encrypted.

From my point of view, traffic should be encrypted (with IP header preservation) and then the packet would be label switched; however this is not happening (traffic is label switched but not encrypted)

Is this a limitation? Anyone knows if this was supposed to work with mpls enabled on the same interface where crypto map is applied?

Regards,

João.

P.S. - I am trying to set a BGP core free topology with GET VPN.

 

Labels:
0 Helpful
1 Reply 1

jcarvalh
Level 1
Level 1

‎11-23-2014 04:27 AM

Hello.

 

IPsec only encrypts IP packet not labeled packets. I was hoping that the routers would put the label only after encryption of IP packet but encryption comes after labeling.

 

 

0 Helpful
Customers Also Viewed These Support Documents