03-04-2021 06:49 AM
I need to extend some VLANs between two location (the Enterprise DataCenter and a remote DR DataCenter).
The obvious solution is using OTV on two CSR1000v's.
The connection I have to use is the Internet, so the join-interfaces will be directly on the public network.
Question: is OTV traffic somehow "protected"?
Can I implement two IPSEC tunnels between the two CSRs and then pass the OTV traffic through this tunnel?
Is there any configuration example?
Thank you
Claudio
03-04-2021 09:33 AM
what is the Intra DC protocol you use is it VXLAN or it traditional DC?
03-04-2021 12:01 PM
NO VXLAN, only "traditional"
03-04-2021 12:32 PM
03-04-2021 01:34 PM
This is an insecure solution, as the GRE tunnel is not encrypted.
Also L2TP seems a bit obsolet, I would prefer to use OTV with CSR virtual routers
06-20-2021 11:25 PM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide