09-30-2009 06:04 AM - edited 03-04-2019 06:13 AM
Hi,
Is there any limit on how many IPSEC tunnels can be terminated on the ISR 3845.
That is maximum number of "set peer" commands can be given in crypto map configuration.
Keeping aside that ipsec is very CPU intensive processs. Is there any limit on this so that you can not configure any thing more than this limit.
Please share the experience.
Any link on cisco.com is appreciable.
Thanks in advance
Subodh
09-30-2009 06:08 AM
You are looking at 2000 tunnels
HTH,
__
Edison.
09-30-2009 06:12 AM
Ipsec is not really very CPU intensive. ISR router have dedicated hardware on board that handles encryption.
However, you can have 10 tunnels with lot of traffic and be in trouble, or have 10,000 with little traffic and be OK.
Generally speaking there are no hard numbers in router. Reasonable design is what matters.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: