Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
468
Views
0
Helpful
2
Replies

Best Sol'n for P2P IPSEC w/ Cat6500 VPN SPA

mchoo2005
Level 1
Level 1

‎08-20-2006 10:30 PM - edited ‎02-21-2020 01:07 AM

Hi,

Can anyone tell me the best solution for IPSEC encryption over Point-to-point Ethernet link b/w two Cat6500 with VPN SPA? At first I though we could use VTI, but learned the hard way that VTI is not supported on Cat6500/Cisco7600 (if only we read the VTI SRND, it would've saved a bit of headache! :( ).

Thanks muchly for any pointers...

Cheers

0 Helpful
2 Replies 2

b.hsu
Level 5
Level 5

‎08-25-2006 09:23 AM

Payload Compression Protocol. This is a compression protocol supplied with the Cisco IOS software code on which the FWSM IPSec implementation is based. The FWSM does not support the PCP protocol.

0 Helpful

ajagadee
Cisco Employee
Cisco Employee

‎09-08-2006 07:54 PM

Michael,

Yes, you are correct. VTI is not supported in IPSEC VPN SPA on 6500. But, is supported on the 7600 with 12.2(33)SRA release. Please refer the below URL for details.

http://www.cisco.com/en/US/products/hw/routers/ps368/module_installation_and_configuration_guides_chapter09186a00804d35a6.html

In your case, if you want dynamic unicast or multicast routing protocols over the tunnel, then GRE Over IPSEC is the way. Configuration Guide in the below URL:

http://www.cisco.com/en/US/products/hw/switches/ps708/module_installation_and_configuration_guides_chapter09186a00805f3812.html#wp1130644

I hope it helps.

Regards,

Arul

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card