Thanks,

Can you describe the traffic flow, please? When IPSEC encapsulation of GRE tunnel performed & how "GRE encapsulated traffic" redirected to VSPA  from SIP-400/600??

The VPN SPA will take care of any IPSec related services hence removing this load from the CPU or any other ASIC on the switch.

The SIP400 with a GigaSPA will take care of the physical traffic leaving the switch.

I highly suggest you become familiar with the hardware and configuration so please read the documentation:

http://www.cisco.com/en/US/docs/interfaces_modules/shared_port_adapters/install_upgrade/6500series/sipspahw.html

http://www.cisco.com/en/US/docs/interfaces_modules/shared_port_adapters/configuration/6500series/sipspasw.html

Thanks,

Where encapsulation of MPLS traffic to GRE tunnel performed? On VSPA or GigaSpa ?

If the answer "On VSPA" - so the output of VSPA is regular IP packet (non MPLS) so why I need GigaSpa WAN card, can't i use LAN card (like 6748) ???

Or you mean that the MPLS packet encapsulated in GRE tunnel on GigaSpa and then IPSEC encapsulated on VSPA ??

MPLS is performed on the GigaSPA.

You can use a regular line card as the one you mentioned but it won't support VPLS

And before you ask, EoMPLS over GRE is not supported on 6500.

Thanks,

Can you describe the traffic flow, please?

When IPSEC encapsulation of GRE tunnel performed & how "GRE encapsulated traffic" redirected to VSPA from SIP-400/600??

 Idan Grinshpon

 System Engineer

 Defense Division

 8 Hanehoshet St

 Tel-aviv , 69710, Israel

 Tel:03-6459032

 Mobile:052-5529032

 Fax:03-5480651

 idang@bynet.co.il