I put a basic IPSec configuration in place. From looking at the show crypt ipsec sa output below, compression is not being performed. Can you point me to a direction on how to make this IPSec tunnel encrypt traffic? Is that type of compression on IPSec something you normally use in production?
RouterB#show crypt ipsec sa
Crypto map tag: test, local addr. 10.0.0.2
local ident (addr/mask/prot/port): (184.108.40.206/255.255.255.0/0/0)
remote ident (addr/mask/prot/port): (220.127.116.11/255.255.252.0/0/0)
#pkts encaps: 16, #pkts encrypt: 16, #pkts digest 16
#pkts decaps: 16, #pkts decrypt: 16, #pkts verify 16
#pkts compressed: 0, #pkts decompressed: 0
#pkts not compressed: 0, #pkts compr. failed: 0
#pkts not decompressed: 0, #pkts decompress failed: 0
#send errors 0, #recv errors 0
You need to add 'comp-lzs' in the transform type.
And no, it's not commonly used in production anymore with everyone using fast WAN links.