Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

DMVPN solution

Hi All,

We have a customer who is Juniper shop mainly. They are currently at 100 branch setup and planning for 500 branches. Since i have implemented DMVPN before, this is what i proposed to them (they dont require full mesh but strict hub and spoke). They are insisting that we provide them non-propriety and scalable solution since they dont want any vendor locking. 

So i thought i should ask you guys, how others are doing it ? i mean not all implementations in the enterprise world use DMVPN right ? or do they ? should they go for creating a separate tunnel for every spoke ? if they follow this approach, will it have any impact on the performance/memory ?

 

Any idea guys, m totally lost here

Everyone's tags (1)
1 REPLY
VIP Super Bronze

Hi,They can try Group VPN

Hi,

They can try Group VPN which is probably the closest to DMVPN, but your need Junos 12.1 or later

http://www.juniper.net/documentation/en_US/junos12.1x46/topics/concept/vpn-security-group-cisco-get-vpn-interoperability-understanding.html

 

There is also AutoVPN:

http://www.juniper.net/documentation/en_US/junos12.1x46/topics/task/configuration/security-autovpn-configuration-overview.html

Not sure what type of firewall your customer use, but if they want to go separate tunnel for each site, (500 VPNs) then they probably need to look at the SRX-3400 or 3600 series

HTH

 

 

433
Views
0
Helpful
1
Replies