04-04-2010 02:32 AM - edited 03-04-2019 08:01 AM
Hello Experts
When and Where should be use DMVPN over GETVPN and Vice versa?plz explain it from both technical and Cost Point of view
Thanks
04-04-2010 07:54 AM
Hello Alsayed,
Here are some explanations for both technologies:
DMVPN stands for Dynamic Multipoint VPN and it is an effective solution for dynamic secure overlay networks. In short, DMVPN is combination of the following technologies:
1) Multipoint GRE (mGRE)
2) Next-Hop Resolution Protocol (NHRP)
4) Dynamic Routing Protocol (EIGRP, RIP, OSPF, BGP)
3) Dynamic IPsec encryption
5) Cisco Express Forwarding (CEF)
04-04-2010 10:58 PM
Hello Riza
thanks for ur reply;just 1 question more? what is the criteria to choose either DMVPN or GETVPN for customer, what is the base criteria to choose each to meet the requirment?
Thanks
04-04-2010 11:43 PM
Normally GetVPN is used if there are requirement for huge fully meshed network, and it also have native multicast support. For GetVPN you would need to have a requirement to have at least 1 KS (Key Server) and the function if KS is purely for key distribution, and it can't participate in the VPN.
Compared to DMVPN, the underlying technology is GRE (it's multipoint GRE tunnel), and you would need to configure IPSec on top of it to encrypt the GRE tunnels.
Here is more information on DMVPN:
http://www.cisco.com/en/US/products/ps6658/index.html
And more on GetVPN:
http://www.cisco.com/en/US/products/ps7180/index.html
Hope that helps.
04-07-2010 11:41 PM
thanks
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: