Attach is the Network topology diagram that I am going to implement.
My requirement is to encrypt all traffic leaving from any branch or core location.
Is this design practically good choice.
3 separate DMVPN cloud one for each location
Permanent ipsec tunnels between Core locations
Branch to branch communication in the same location should be possible through Dynamic tunnels
Branch to branch communication between the core locations via permanent ipsec tunnel
Considering the scalability of the network doing encryption and decryption on two times at same router will it affect the router performance a lot.
Is 3845 good choice??