ISR 3845 -IPSEC tunnel numbers

Unanswered Question
Sep 30th, 2009

Hi,

Is there any limit on how many IPSEC tunnels can be terminated on the ISR 3845.

That is maximum number of "set peer" commands can be given in crypto map configuration.

Keeping aside that ipsec is very CPU intensive processs. Is there any limit on this so that you can not configure any thing more than this limit.

Please share the experience.

Any link on cisco.com is appreciable.

Thanks in advance

Subodh

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Paolo Bevilacqua Wed, 09/30/2009 - 06:12

Ipsec is not really very CPU intensive. ISR router have dedicated hardware on board that handles encryption.

However, you can have 10 tunnels with lot of traffic and be in trouble, or have 10,000 with little traffic and be OK.

Generally speaking there are no hard numbers in router. Reasonable design is what matters.

Actions

This Discussion