04-14-2017 02:54 AM - edited 07-05-2021 06:52 AM
Hello Masters,
we have one central location which is connected to 4 Different Sites via Radio point to point link.
on each site we have 2800 series cisco router, Dell Power Connect Switches.
I am using Ether Channel between router and switches for load balancing and redundancy and created virtual interface on router.
Now, I am told to encrypt the data which is flowing between this sites via radio, someone suggested to go for GRE or IPSEC, i would really wanna go for GRE because its really easy to configure.
My question is it possible to configure GRE tunnel on this environment as i mentioned above will it help me?
and, is it possible to configure GRE tunnel in point to multi point environment ?
if yes kindly share a link with me.
thanks in advance.
Regards,
himanshu dua
04-18-2017 02:41 PM
Native GRE is not encrypted. You will still need to deploy IPSec over the GRE tunnel to encrypt it. You have a couple of options; manual GRE/IPSec, DMVPN (same as manual but easier to deploy), GETVPN, or just IPSec tunnels. Personally I would lean towards GETVPN or DMVPN.
04-26-2017 08:14 AM
I would recommend using Dynamic Multipoint VPN (DMVPN) as Collin had mentioned. It'll do what you want, however, ensure that your radio equipment is not doing encryption as well -- seems like dual encryption would be unnecessary. My experience with doing DMVPN over point-to-point wireless is limited so I'm unsure on best practices of DMVPN on top of it.
-Lucas
05-07-2017 01:00 AM
Hi,
GRE is Cisco Protocol, you might have problem connecting the Cisco Router with DELL Switches you need to check compatibility with your boxes....
so you might search for alternative...DMVPN is also Cisco protocol.
if your boxes compatible then you can use DMVPN and add IPSEC...
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: