Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
291
Views
0
Helpful
3
Replies

C7206 abnormal encryption behaviour

ibrahim_hassan
Level 1
Level 1

‎08-16-2009 12:34 AM - edited ‎03-04-2019 05:45 AM

Dear all,

    i have C7206 and other remote routers.

when i tried to make remote Desktop session on machines behind any remote router from machine behind C7206 ....>

it gives delay and session timeout.

if i delete encryption configuration it works.

i need any debugs can show me what is the problem?

Labels:
0 Helpful
3 Replies 3

Giuseppe Larosa
Hall of Fame
Hall of Fame

‎08-16-2009 04:08 AM

Hello Ibrahim,

the question may be related on some initial multicast discovery attempt made by RDP client.

multicast or broadcast traffic is not encrypted and your ACLs specify local or remote IP subnets.

IPSec works well with unicast traffic.

the usage of WINS servers or the usage of ip helper address command may help in your case.

Verify also the MTU on the encrypted path you need to be able to support packets of 1500 bytes end-to-end between client vlans.

Hope to help

Giuseppe

0 Helpful

paolo bevilacqua
Hall of Fame
Hall of Fame
In response to Giuseppe Larosa

‎08-16-2009 04:14 AM

It is not possible to support MTU of 1500 on IPsec circuits, due to encryption overhad.

However, that should not pose any problem on an otherwise correctly configured network.

0 Helpful

ibrahim_hassan
Level 1
Level 1
In response to Giuseppe Larosa

‎08-16-2009 04:24 AM

how i can test this?

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card