|
Posted by on September 22, 2008, 9:51 am
Please log in for more thread options
Is it possible to encrypt all TCP or IP packets going out to a
corporate public virtual network without using IPsec. All routers
going on the corporate VPN would hardcode this way of doing things (no
policy negotiation).
Our problem is that we are using a cisco 3250/30 router and that the
GETVPN feature is not available on those router. The GETVPN feature is
used in secure networks using multicast. Because we are using
multicast, the only other alternative is DMVPN which is less than
adequate because each packet is replicated for every destination.
Thank you in advance for your support.
|
|
Posted by Hansang Bae on September 25, 2008, 9:24 pm
Please log in for more thread options
lroy@oerlikon.ca wrote:
> Is it possible to encrypt all TCP or IP packets going out to a
> corporate public virtual network without using IPsec. All routers
> going on the corporate VPN would hardcode this way of doing things (no
> policy negotiation).
>
> Our problem is that we are using a cisco 3250/30 router and that the
> GETVPN feature is not available on those router. The GETVPN feature is
> used in secure networks using multicast. Because we are using
> multicast, the only other alternative is DMVPN which is less than
> adequate because each packet is replicated for every destination.
>
> Thank you in advance for your support.
I don't think it's possible. There's no SSL tunnel capabilities with
routers so you're stuck with IPSec. You can't use preshared keys or
RSA sig? In that case, dynamic key exchanges are not required
--
hsb
"Somehow I imagined this experience would be more rewarding" Calvin
********************************************************************
Due to the volume of email that I receive, I may not be able to
reply to emails sent to my account. Please post a followup instead.
********************************************************************
|
| Similar Threads | Posted |
| Encryption WITHOUT IPsec | September 22, 2008, 9:51 am |
| 871 and AES hardware encryption. | July 25, 2005, 1:22 pm |
| PIX VPN encryption performance? | September 24, 2008, 11:31 am |
| which version of IOS supports AES encryption for SNMPv3? | May 1, 2006, 10:52 am |
| [X-post] L2TP with CA authentication, no encryption. | August 7, 2006, 11:09 am |
| wireless encryption without pre-shared keys? | September 9, 2008, 1:58 pm |
| how can i set up MPPE encryption on cisco 3725 router? | November 1, 2006, 9:07 am |
| Highly dynamic network with encryption and multicast | September 29, 2008, 4:26 pm |
| Encryption on AIR-BR350 as access point with third party clients | September 1, 2008, 4:20 pm |
| Failing Phase2 Auth - IPSec - All IPSec SA proposals found unacceptable | November 26, 2008, 7:37 pm |
| IPsec within L2TP over IPsec - PIX. | July 23, 2006, 6:14 pm |
| 4506 acting as LNS with L2TP over IPsec and IPsec over L2TP. | February 15, 2007, 5:47 pm |
| 4506 acting as LNS with L2TP over IPsec and IPsec over L2TP. | February 20, 2007, 4:00 am |
| IPSec | October 4, 2005, 3:10 pm |
| IPSec VPN through NAT | January 24, 2006, 4:19 pm |
Encryption WITHOUT IPsec
Yahoo!
Google
Windows Live
del.icio.us
digg
Netscape
> corporate public virtual network without using IPsec. All routers
> going on the corporate VPN would hardcode this way of doing things (no
> policy negotiation).
>
> Our problem is that we are using a cisco 3250/30 router and that the
> GETVPN feature is not available on those router. The GETVPN feature is
> used in secure networks using multicast. Because we are using
> multicast, the only other alternative is DMVPN which is less than
> adequate because each packet is replicated for every destination.
>
> Thank you in advance for your support.