Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
594
Views
0
Helpful
4
Replies

Data Encryption Options over Private P2P Circuits

kevin.hu
Level 3
Level 3

‎08-19-2008 01:40 PM - edited ‎03-03-2019 11:12 PM

Hi,

My customer would like to encrypt traffic across all our private P2P circuits. We have a hub-spoke topology with 50 spoke routers per one hub router. After some searches, I narrowed down to these options:

GET (Group Encryption Transport): This is exactly what we want except it only works on 12.4T. No go.

P2P IPsec over GRE: a pain to set it up with multiple P2P circuits on the hub router. No go.

DMVPN: easier to set it up than P2P IPsec over GRE. This might work.

Are there other options available for me to simply encrypt traffic without setting up tunnels? By the way, it has to be done from the current router, cannot purchase additional hardware.

Thanks!

Labels:
0 Helpful
4 Replies 4

Joseph W. Doherty
Hall of Fame
Hall of Fame

‎08-19-2008 02:24 PM

Don't have a suggestion on other alternatives. However, if you can't purchase hardware, and your current hardware doesn't support hardward encryption, just want to insure you're aware that you might see a huge drop in performance.

0 Helpful

kevin.hu
Level 3
Level 3
In response to Joseph W. Doherty

‎08-19-2008 02:55 PM

Thank Jose. We have 2800 and 3800 so we are ok in term of performance.

Anyone else has any suggestion?

0 Helpful

merryllem
Level 1
Level 1

‎08-19-2008 05:29 PM

How about PPP encryption on the actual WAN link?

0 Helpful

kevin.hu
Level 3
Level 3
In response to merryllem

‎08-19-2008 06:36 PM

Thanks Merry. I tried to find any reference to how to configure PPP encryption and there isn't too much information about it. Does IOS suppose this?

0 Helpful
Customers Also Viewed These Support Documents