Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Router encryption translation capabilities?

Not sure if this should be posted in this forum but it seems to be the best fit. (if anyone has a better idea I'll post there).

We have a client communicating to us over a VPN using IPSEC GRE tunneling on a 1700+ series router. They will not use any other kind of router or implement any other security protocols or allow us to install any equipment on their site. Our requirements are that all messages across our internal LAN must be encrypted. If we use a IPSEC router, the messages will come out the back into our LAN in the clear.

Can anyone please tell me if there is a router / firewall or any kind of device that will do encryption translation from IPSEC on the WAN to SSL on the LAN? I say SSL because our crypto devices can support this and at least the messages will get there in some kind of encrypted state.

Any help really appreciated.


Re: Router encryption translation capabilities?

Usually two sites involved will have either firewall or router which does authentication and encryption on their respective sides . These devices take care of encryption only between themselves. If you need encryption beyond this to internal LAN on their sides , you need to configure end hosts to support and negotiate for this.


Re: Router encryption translation capabilities?

Yes, run "ssh" inside the IPSec tunnel. That

will ensure all communications will be encrypted.

CCIE Security

CreatePlease login to create content