05-18-2018 03:36 AM - edited 03-12-2019 05:18 AM
Hi,
Been a long time since I've posted on here, but new to GETVPN, been asked to diabled fully without any down time, so looks like all GM have a open fail policy and no local ACLs.
what would you good people suggest as good way to allow traffic just to pass over the MPLS as normal not use the GETVPN?
Thanks in advance
Kevin
05-18-2018 06:15 AM
05-18-2018 06:24 AM
Hi,
Currently my options are
1) Deny ip any any on KS gdoi ACL (wait a week to see if any fallout, then safety remove config on GMs)
2) Remove all GM peer IP addresses on KSs
3)on GMs remove VPN map command from interfaces as you suggested.
Thanks
Kev
01-10-2021 05:20 PM
Did you ever make progress with this?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide