cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
472
Views
8
Helpful
7
Replies

Encryption with Bridging

netsec123
Level 1
Level 1

Hi.

We have a client asking to do something I do NOT think is possible but I may be wrong. Two sites, NY and LA. BOTH are using the private block 10.10.10.X /24. They are currently NOT connected but will be via a 10Mb fiber link. Thus, layer two... They wish to ENCRYPT traffic across this "bridged" link... Has anybody done this before and / or is it even possible?? The goal is essentially to PROTECT the firm from the carrier providing the layer two fiber!! Ideas please!!!

7 Replies 7

paolo bevilacqua
Hall of Fame
Hall of Fame

Encryption won't work with bridging.

Once your customer uses two different IP subnets, you can encrypt traffic using IPsec.

Hope this helps, please rate post if it does!

Thank you. :) Would you know of 'any' way - even non-cisco - that will facilitate the easiest way to get this link encrypted? Just wondering?

:)

Thanks!

Hi,

Considering that a pair of cisco routers series 870, modestly priced, will provide encryption speed of 8 Mbps, I think that is the best way to do it. If you need to connect directly to the fiber, the price will be higher and you would need to mention here the physical access characteristics of the link.

Thanks for the nice rating and good luck!

But wait... I'm sorry... won't that mean that we will need to have a different subnet on both sides? Can we bridge?

Hi,

as consultant/vendor the best favor you can do to your customer is to convince him to renumber and help in the process.

All other hypothesis are kludges that will only generate complications and trouble.

Good luck!

You are 1000% correct!!! Believe me, I am trying! :) And, thank you so much for the URLs. I am going through them now. ;)

bbaillie
Level 1
Level 1
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Innovations in Cisco Full Stack Observability - A new webinar from Cisco