07-04-2019 05:47 AM - edited 02-21-2020 09:41 PM
Hi all
Can someone please explain thy below statement with the help of an example?
This is one of the scalability limitations of Crypto Map-based configurations; the number of SAs does not scale linearly with the number of tunnel endpoints, as it would in either a GRE over IPsec or IPsec VTI configuration.
Thank you
07-04-2019 05:57 AM
My take on this is, if you have an IPSEC tunnel between two tunnel endpoints (public IP addresses),
you can have an X number of unidirectional SA's as per below pic. Depending on how complicated your protected traffic definitions are
07-04-2019 06:15 AM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide