If you are connected by private fiber cable, you don't really need to encrypt traffic. Since it will greatly affect the performance. If you really want to encrypt traffic, as it is site-to-site encryption on LAN, you may consider Network Layer encryption instead of VPN. For IOS Network Layer encryption, you can find more information as following link:
If it is layer 2, you may consider external encryptor such as cylink. Another alternative to encryption is data compression with QoS device such as Expand. Since data compression has its own compress algorithm and ratio. If the far end does not match it, it can read the data as well. Of course, encryption is more powerful and high security level. If you wish to use either encrytor or data compression device, you may contact your local suppliers with your requirement to see what kind of products they can offer.
Otherwise, you need to upgrade your switches to layer 3 capable or adding external routers upon your connection types such as Trunk mode, Port mode or fiber channel.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
[toc:faq]Introduction:This document describes details on how NAT-T
works.Background:ESP encrypts all critical information, encapsulating
the entire inner TCP/UDP datagram within an ESP header. ESP is an IP
protocol in the same sense that TCP and UDP are I...