Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
5966
Views
9
Helpful
7
Replies

DMVPN without IPSec Encryption?

Go to solution
simonstoll
Level 1
Level 1

‎07-23-2007 04:25 AM - edited ‎03-03-2019 05:59 PM

Hi

I need point-to-multipoint tunnels for a virtual overlay. Encryption is not necessary as the transport network is a corporate network and no internet. I also don't need the ability of direct spoke to spoke communication. At the moment I'm working with GRE point-to-point links, but the config on the HUB starts to look a bit crowded, so I would prefer a point to multipoint technology.

Any help is welcome, and a will be graded.

Best regards

Simon

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
paolo bevilacqua
Hall of Fame
Hall of Fame
In response to simonstoll

‎07-23-2007 04:47 AM

Yes, in fact it's enough to not configure "tunnel protection" under the tunnel interface and voila, crypto-less DMVPN.

Hope this helps, please rate post if it does!

View solution in original post

7 Replies 7

Go to solution
purohit_810
Level 5
Level 5

‎07-23-2007 04:35 AM

Hi Simon,

Here is the great document to configure DMVPN.

http://www.cisco.com/application/pdf/en/us/guest/products/ps6658/c1161/cdccont_0900aecd80313c97.pdf

Regards,

Dharmesh Purohit

0 Helpful

Go to solution
simonstoll
Level 1
Level 1
In response to purohit_810

‎07-23-2007 04:41 AM

Hi Dharmesh

Thanks, but the question is if that also works without IPSec? I don't want to add this unnecessary processing burden on the HUB router.

Simon

0 Helpful

Go to solution
paolo bevilacqua
Hall of Fame
Hall of Fame
In response to simonstoll

‎07-23-2007 04:47 AM

Yes, in fact it's enough to not configure "tunnel protection" under the tunnel interface and voila, crypto-less DMVPN.

Hope this helps, please rate post if it does!

Go to solution
kerek
Level 4
Level 4

‎07-23-2007 04:40 AM

Hi,

I think the DMVPN can be used without encryption. Take a look to this link: http://www.cisco.com/application/pdf/en/us/guest/products/ps6658/c1161/cdccont_0900aecd80313c9d.pdf

Hope it helps,

Krisztian

Go to solution
simonstoll
Level 1
Level 1
In response to kerek

‎07-23-2007 04:49 AM

Hi

Thank you all for your help, I will now go to my lab and try it out. And thank you for this fast replies, I didn't even hade time to walk to the coffee machine!

I will grade you when it works :-)

Best regards

Simon

0 Helpful

Go to solution
paolo bevilacqua
Hall of Fame
Hall of Fame
In response to simonstoll

‎07-23-2007 08:34 AM

It will work.

Just don't do like us today spending a lot of time because the router was learning the tunnel destination address via routing inside the tunnel. P-t-p tunnel will warn you about, but a multipoint will not!

thanks for the nice rating and good luck!

0 Helpful

Go to solution
simonstoll
Level 1
Level 1
In response to paolo bevilacqua

‎07-23-2007 11:42 AM

It worked!!!

Now I have to change all my tunnels to GRE/mGRE with NHRP. Thank you so much, you saved my day. It was crazy how fast I got an answer on this forum today.

Simon

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card