04-13-2016 01:58 PM - edited 02-21-2020 08:46 PM
Hi All,
Quick question, Can you have MPLS in BO and Internet in HO ? How to implement IPsec tunnel between the HeadOffice Internet and the BranchOffice MPLS connection ?
Ideal situation will be to have either MPLS in HO and all BO's and have private VPN, but what I have a situation where my Centeral location is via Internet and remote sites through MPLS and would like to implement the IPsec tunnel (Site to Site) vpn tunnel ?
Can you guide me through ?
Thanks
04-13-2016 02:15 PM
Fundamentally, whatever is doing the encryption has to be able to talk to the remove device - so that it can send the encrypted data to it, and so that the remote device can decrypt it.
So you'll need all the sites to have Internet connections, or MPLS connections, but I doubt your MPLS sites will be able to directly talk to the Internet.
04-13-2016 03:24 PM
I have never seen a senrio where the HO has internet access and BO MPLS!!! Actually some sites will have MPLS/ADSL/3g/4g connections.
I am okay with IPsec tunnel over ADSL and 3g/4g connection, however I am kinda confused IPsec over MPLS and then internet! One of our client requirement! I suggested that you have to have MPLS connection in both sites and then certainly you can configure IPsec tunnel over MPLS if you don't trust your Service Provider!
Thanks
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide