cisco 2811

Answered Question
Nov 14th, 2007

hi,

Im involved in deploying a project with end-to-end encryption using cisco 2811 router. And the number of users in this project would be max 10. Im aware that the cisco 2811 has got on board encryption capability. Hence would it be better if I go for separate(either hardware or software) encryption module or use the existing on board encryption since the number of users are just 10.

I have this problem too.
0 votes
Correct Answer by Collin Clark about 9 years 3 weeks ago

There are two options for encrpytion; the main CPU and a VPN/SSL AIM daughter card. Which one to use depends on the amount of traffic to be encrypted/decrypted and the encryption level (ie 3des/AES). If your going to use AES you pretty much have to use the AIM card. In a lab I was able to cripple a couple of 2811's with AES using the main CPU for encryption, with relatively low traffic loads.

HTH and please rate.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
Collin Clark Wed, 11/14/2007 - 08:45

There are two options for encrpytion; the main CPU and a VPN/SSL AIM daughter card. Which one to use depends on the amount of traffic to be encrypted/decrypted and the encryption level (ie 3des/AES). If your going to use AES you pretty much have to use the AIM card. In a lab I was able to cripple a couple of 2811's with AES using the main CPU for encryption, with relatively low traffic loads.

HTH and please rate.

ccbootcamp Mon, 11/26/2007 - 22:44

It really depends...how big are the pipes? What type of encryption? How much bandwidth do you think are you going to be encrypting?

-brad

Actions

This Discussion