I have an ASR1004 and am trying to load-balance a 1.5G data rate over two 1-Gig ports using IPSEC, but I have a few questions.
1. Can GRE support a 9K mtu w/o fragmenting
2. Can you run IPSEC on a port channel
3. Can the ASR load-balance per- S&D on a this logical interface?
I currently have two separate tunnels, one on each outbound gig interface and with OSPF running between them using OSPF/GRE. However, I can't get a 7000 mtu w/ the DF bit set through to the distant end. I am guessing this is because of the GRE interface.
So is it possible to run IPSEC on a port channel and have this load balance per S&D? I need to use the BW of both ports.
Thanks for the help!