Hi,
I am planning to install a Gigabit point-to-point connection over Cisco 7206VXR_NPE-G2 and VSA to achieve IPSec 3DES encryption over the full service bandwidth.
According to product release notes for VSA the supported throughput is 950 MB for IPSec 3DES.
I want to understand whether the remaining 50Mb gets off-loaded to IOS based encryption (parent processor) or will the VSA be able to sustain the additional 50Mb as well?
In case the overload (above 950) gets off-loaded to main processor (NPEG2 processor) then what is the limit upto which the main processor can support IPSec encryption?
Reason I ask: I intend to configure the solution in future to deliver 2Gb towards WAN and corrospondingly I will add one PA-GE to deliver 2Gb towards LAN.
So, the existing VSA will support 950 and I want to understand how will it be possible to support remaining IPSec encryption and how scalable the solution can be?
Thanks in advance,
- PJ