Mike Sullenberger, good day sir My name is Louis Prestipino. We met in LA at Networkers about 12 years ago. I was with LandAmerica and we (by that I mean mostly you) found a Bug associated with the Shared Key word on tunnel protection. The work around was to source each tunnel with its own Loopback.
I need to migrate my DMVPN solution from IKEv1 to IKEv2.
I have a Multi IVRF implementation with two clouds in each VRF one that is Internet based (remotes sourced from internet) and one that is MPLS BAsed.
I have all the Tunnel source IP in Global of course. The VIPS are front ended on an F5, the pools are the Hub loopbacks (Tunnel sources).
I would like a separate Authentication (Pre-share or Cert per VRF.
Can you point me to a good Document. Thanks