Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Catalyst 6500 L2 over IPSEc

Is catalyst 6500 supports L2TPv3 over IPSEC in combination with  VPN Services Port Adapter (VSPA) ?

Is catalyst 6500 supports VPLS over IPSEC in combination with  VPN Services Port Adapter (VSPA) ?

6 REPLIES
Hall of Fame Super Bronze

Re: Catalyst 6500 L2 over IPSEc

1) No, 6500 only supports EoMPLS

2) Yes, but you need a SIP400 or SIP600 GigaSpa in addition to the VPN SPA which does IPSEC

http://www.cisco.com/en/US/docs/interfaces_modules/shared_port_adapters/configuration/6500series/76cfgeth.html#wpmkr1147084

Regards

Edison.

New Member

Re: Catalyst 6500 L2 over IPSEc

Thanks,

Can you describe the traffic flow, please? When IPSEC encapsulation of GRE tunnel performed & how "GRE encapsulated traffic" redirected to VSPA  from SIP-400/600??

Hall of Fame Super Bronze

Re: Catalyst 6500 L2 over IPSEc

The VPN SPA will take care of any IPSec related services hence removing this load from the CPU or any other ASIC on the switch.

The SIP400 with a GigaSPA will take care of the physical traffic leaving the switch.

I highly suggest you become familiar with the hardware and configuration so please read the documentation:

http://www.cisco.com/en/US/docs/interfaces_modules/shared_port_adapters/install_upgrade/6500series/sipspahw.html

http://www.cisco.com/en/US/docs/interfaces_modules/shared_port_adapters/configuration/6500series/sipspasw.html

New Member

Re: Catalyst 6500 L2 over IPSEc

Thanks,

Where encapsulation of MPLS traffic to GRE tunnel performed? On VSPA or GigaSpa ?

If the answer "On VSPA" - so the output of VSPA is regular IP packet (non MPLS) so why I need GigaSpa WAN card, can't i use LAN card (like 6748) ???

Or you mean that the MPLS packet encapsulated in GRE tunnel on GigaSpa and then IPSEC encapsulated on VSPA ??

Hall of Fame Super Bronze

Re: Catalyst 6500 L2 over IPSEc

MPLS is performed on the GigaSPA.

You can use a regular line card as the one you mentioned but it won't support VPLS

And before you ask, EoMPLS over GRE is not supported on 6500.

New Member

Re: Catalyst 6500 L2 over IPSEc

Thanks,

Can you describe the traffic flow, please?

When IPSEC encapsulation of GRE tunnel performed & how "GRE encapsulated traffic" redirected to VSPA from SIP-400/600??

 Idan Grinshpon

 System Engineer

 Defense Division

 8 Hanehoshet St

 Tel-aviv , 69710, Israel

 Tel:03-6459032

 Mobile:052-5529032

 Fax:03-5480651

 idang@bynet.co.il

615
Views
5
Helpful
6
Replies