Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
587
Views
0
Helpful
1
Replies

IPSec Virtual Tunnel Interface

donlon
Level 1
Level 1

‎06-12-2005 10:28 AM - edited ‎02-21-2020 01:49 PM

In IOS 12.3(14) the IPSec Virtual Tunnel Interface was introduced.

Apparently it can handle multicast (read Routing Protocols) and yet it doesn't appear to be simple GRE or use Next Hop Routing Protocol as in DMVPN.

On the surface it appears as a more straightforward solution to the limitations of pure IPSEC than using the more complicated DMVPN. Has anybody used or investigated VTI's. Anyones thoughts on this technologies application and usefulness would be appreciated.

Labels:
0 Helpful
1 Reply 1

aacole
Level 9
Level 9

‎06-12-2005 11:33 AM

I've just spent a few days working on GRE with IPSec for a high bandwidth application which includes passing full size UDP frames and resolving the MTU and fragmentation issues.

Also I have to pass and encrypt OSPF so I needed GRE with IPSec, until packet magazine dropped through my door I and mentioned this feature. Although the links in the document referred to on page 86 didnt work it does seem to be the answer to some of my problems.

There seems to be little info about this on cisco.com though, I found a sample configuration and description of commands, but nothing about MTU or performance.

Anyway I'm off to download the code, and try it on my test routers. It could be just what I'm looking for. I'm interested to hear how you get along with this.

Andy

0 Helpful
Customers Also Viewed These Support Documents