cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
549
Views
0
Helpful
3
Replies

Selective Encryption of Branch Office Traffic to Head Office

ravinda
Level 1
Level 1

Hi,My Customer has the following requirement to star-connect his branches [CISCO1751s] to Head Office [CISCO3662-AC with VPN Module + 56bit DES].

He requires encryption of traffic originating only from certain branches. He would use IPSec56 at these branches without HW Encryption. Data traffic from other branches need not be encrypted.

My concern is would a scenario like above be implemented. i.e. would the Head Office Router be able to distinguish encrypted traffic from non-encrypted traffic and act upon them accordingly.

Appreciate your comments. Thank you.

Ravinda

3 Replies 3

chlovell
Level 1
Level 1

Yes..when you create the tunnel it goes off the access-list that you make and in that access list you would tell it the traffic that is to be encrypted and all other traffic is sent across and not encrypted

Hi, Thank you for responding to my query. I suppose this is possible even over Frame Relay.

Thanks, Ravinda.

cjacinto
Cisco Employee
Cisco Employee

Sample config of such is on:

http://www.cisco.com/warp/customer/707/ios_hub-spoke.html

The crypto acl defines the interesting traffic to be

encrypted and the rest goes into clear.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: