02-25-2002 03:29 AM - edited 03-08-2019 09:54 PM
Hi,My Customer has the following requirement to star-connect his branches [CISCO1751s] to Head Office [CISCO3662-AC with VPN Module + 56bit DES].
He requires encryption of traffic originating only from certain branches. He would use IPSec56 at these branches without HW Encryption. Data traffic from other branches need not be encrypted.
My concern is would a scenario like above be implemented. i.e. would the Head Office Router be able to distinguish encrypted traffic from non-encrypted traffic and act upon them accordingly.
Appreciate your comments. Thank you.
Ravinda
02-25-2002 06:25 AM
Yes..when you create the tunnel it goes off the access-list that you make and in that access list you would tell it the traffic that is to be encrypted and all other traffic is sent across and not encrypted
02-25-2002 08:41 PM
Hi, Thank you for responding to my query. I suppose this is possible even over Frame Relay.
Thanks, Ravinda.
02-25-2002 06:44 PM
Sample config of such is on:
http://www.cisco.com/warp/customer/707/ios_hub-spoke.html
The crypto acl defines the interesting traffic to be
encrypted and the rest goes into clear.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: