Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
942
Views
0
Helpful
2
Replies

Cisco SDWAN Control Connection: TLS vs DTLS

lazuardinurfaiz15
Level 1
Level 1

‎03-08-2023 08:30 PM

Hi All.

I have Cisco SDWAN running well using Control Connection on DTLS. For some reason, our customer asked to change the control connection to TLS. Can someone please share document related to pro-cons for control connection using dtls / tls on Cisco SDWAN? Thank you.

Labels:
0 Helpful
2 Replies 2

David Ruess
VIP
VIP

‎03-08-2023 08:59 PM

Hello,

 

You can try Chapter 2 of this document where it talks about DTLS/TLS:

 

https://www.cisco.com/c/en/us/td/docs/routers/sdwan/configuration/security/vedge/security-book.pdf

 

-David

0 Helpful

Kanan Huseynli
VIP
VIP

‎03-09-2023 07:14 AM

Hi,

with vBond it is always DTLS. With vSmart/vManage it can be TLS also and it is recommended as below (from Cisco SD-WAN CVD):

"TLS is recommended since it uses TCP, which uses acknowledgments for greater reliability. TCP is also connection-oriented, so firewalls can maintain the state of the connections and allow return traffic without explicitly having to allow the traffic."

https://www.cisco.com/c/en/us/td/docs/solutions/CVD/SDWAN/cisco-sdwan-design-guide.html

HTH,

 

HTH,
Please rate and mark as an accepted solution if you have found any of the information provided useful.

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card