Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
708
Views
0
Helpful
2
Replies

How-to determine VPN Module compatiability between different routers

mapleasant
Level 1
Level 1

‎03-04-2011 08:56 AM

Hi,

How do i confirm that a VPN module installed in an 1841 router supports equivalent or better capabilies that those of a VPN module in a 3660 router?

1841sh crypto engine ?
  accelerator    Show crypto accelerator information
  brief          Show all crypto engines in the system
  configuration  Show crypto engine config
  connections    Show connection information
  qos            Show QoS information

1841#sh crypto engine brief
        crypto engine name:  Virtual Private Network (VPN) Module
        crypto engine type:  hardware
                     State:  Enabled
                  Location:  onboard 0
              Product Name:  Onboard-VPN
                HW Version:  1.0
               Compression:  Yes
                       DES:  Yes
                     3 DES:  Yes
                   AES CBC:  Yes (128,192,256)
                  AES CNTR:  No
     Maximum buffer length:  4096
          Maximum DH index:  0150
          Maximum SA index:  0150
        Maximum Flow index:  0300
      Maximum RSA key size:  0000


        crypto engine name:  Cisco VPN Software Implementation
        crypto engine type:  software
             serial number:  A2D144C2
       crypto engine state:  installed
     crypto engine in slot:  N/A


3660#sh crypto engine brief
        crypto engine name:  Virtual Private Network (VPN) Module
        crypto engine type:  hardware
                     State:  Enabled
        VPN Module in slot:  0
              Product Name:  AIM-VPN/HPII
         Software Serial #:  55AA
                 Device ID:  0014 - revision 0002
                 Vendor ID:  13A3
               Revision No:  0x00140002
              VSK revision:  0
              Boot version:  255
               DPU version:  0
               HSP version:  2.3(22) (ALPHA)
              Time running:  3w0d
               Compression:  Yes
                       DES:  Yes
                     3 DES:  Yes
                   AES CBC:  Yes (128,192,256)
                  AES CNTR:  No
     Maximum buffer length:  4096
          Maximum DH index:  3500
          Maximum SA index:  3500
        Maximum Flow index:  7000
      Maximum RSA key size:  2048


        crypto engine name:  Cisco VPN Software Implementation
        crypto engine type:  software
             serial number:  1A185080
       crypto engine state:  installed
     crypto engine in slot:  N/A

-- mapleasant

Labels:
0 Helpful
2 Replies 2

mapleasant
Level 1
Level 1

‎03-04-2011 11:06 AM

I am trying to determine if the VPN module that is in my 1841 router can provide the same capability as the VPN module that is in my 3660 router. How do I go about doing this? I am aware that an AIM-VPN/SSL-1 module can be installed.  I am trying to determine the type of VPN module that is installed already installed. Please advise.

0 Helpful

manish arora
Level 6
Level 6
In response to mapleasant

‎03-04-2011 11:46 AM

The only difference between these two is that :-

1841 onboard accelerator ---- > doesn't not support ip payload compression protocol hardware acceleration

AIM-VPN/HP11 ---> does support IPPCP hardware acceleration.

Both of these doesn;t support ipv6 ipsec and ssl vpn acceleration.

Also, you can use "sh crypto eli"  to see it's isakmp/ipsec limits.

Manish

0 Helpful
Customers Also Viewed These Support Documents