Quick question really, I have a new requirement i need to modify my network to compensate for the encryption of traffic between PE's.
I'm obviously going to use DMVPN which will require me to have MGRE deployed on the PE's.
Traffic will simply just traverse the core as plain old IP.
I may require VRF encryption DMVPN seems to be the best solution here, also for vrf traffic protection
CE's will be configured as spokes and PE's as Hubs. Do you think three PE's as hubs will be difficult to configure.
Topology can be found below.
The one VRF should be encrypted between the three sites.
------ PE-3 ---- CE-3
CE-1 --- PE-1 ----- P1 ---- P2 ------ PE-2 ----- CE-2