Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2511
Views
0
Helpful
2
Replies

GETVPN Key Server Sizing Guidelines.

Ahmed Raafat
Level 1
Level 1

‎12-21-2015 12:58 AM - edited ‎03-05-2019 02:58 AM

Hi,

Can anyone tell me how can I size a router to perform as GETVPN key server? and I need to know what's the equivalent 4K router to 2951 if i'm planning to use it as key server.

Thanks.

2 people had this problem
Labels:
0 Helpful
2 Replies 2

keglass
Level 7
Level 7

‎01-05-2016 10:07 AM

Ahmed,

I recommend you also post this question to the Cisco Support Community in the VPN space (VPN | Cisco Support Community). You may also find the information you requested there.

I hope this helps - thank you for participating in the community.

Kelli Glass

Moderator for Cisco Customer Communities

0 Helpful

jonathan.cuthbert
Level 5
Level 5

‎05-13-2017 03:24 PM

I've always been a bigger fan of DMVPN or FlexVPN, and have not worked much with GET VPN.  That being said, there are many design documents out there.  Here is one.

Here is the excerpt:

KS selection depends largely on the required network scalability (the number of GMs supported in a group). The limiting factors in KS scalability are the registration rate (how quickly GMs can register with a KS) and the ability of the KS to handle rekeys to maintain GM synchronization.

By far, the registration rate is the single most important factor in the KS selection process. The goal of KS server selection for a specific network is to keep registration time low so that, in case of KS rekey failure, GMs can reregister within a reasonable time and continue to forward data without disruption.

We don't have enough information.  Are you using PKI or PSK?  How many "tunnels" do you need to support?

0 Helpful
Customers Also Viewed These Support Documents