I'm currently in the works of configuring DMVPN on an ISDN network. I've used Cisco's DMVPN guide in order to help me create the DMVPN config. But I keep getting TCP timeouts on a device on the spoke side, this device is collecting data from a database on the hub's side. This DMVPN is also using ipsec to encrypt the packets going over the ISDN 30.
I've set the MTU for both the tunnel and dialer interfaces on both sides to 1440 (to accommodate for the tunnel and ipsec overhead), do I need to set the MTU of the actual serial interfaces as 1440? As this will cause problems for other routers that are calling into the hub router that are not using DMVPN since they won't have their MTU as 1440.
Another question I have is what MTU to actually set, as the dialer interfaces and the serial interfaces on both sides are using PPP as encapsulation, will I need to decrease the MTU by another 8 bytes in order to make sure no packets are getting fragmented?
I've included the configs for both the hub and spoke routers.
Hi Team, I have one exclusion provided by internal team which is Is it right way to exclude ? *\Program Files\XYZ\* , as per Cisco Docs i see its not recommended because it will create performance issue when we use * at starting , So...
Central Log Management using Cisco Security Analytics and Logging, December 2nd at 8am-9:30am PT
Cisco Security Analytics and Logging is Cisco’s Central Log Management solution for Network Operations and Security Outcomes. It is delivered both as a c...
Cyberattacks are more sophisticated than ever and your online presence has never been more critical to the success of your business. Cisco, through its OEM partnership with Radware, can help secure your digital future by continuously monitoring...