site to site layer 2 tunnel with router and pix 501
I need to create a layer 2 tunnel with a router and a pix 501 and each end. But, if I use IPsec on a the pix501, the throughput is only 5 or so mpbs. Cleartext on a 501 is 60mbps. I can setup a psuedowire on the router, but I don't think the pix 501 supports it? Any ideas? Can I use ipsec with l2tp tunnel, but some how turn off encyrtion to get more throughput?
Re: site to site layer 2 tunnel with router and pix 501
The obvious question to ask here is what your business requirement is. If traffic must be encrypted and you need over 4.5 Mbps of throughput, then it's time to replace the PIX 501 with an ASA5505 or 800 series router.
If encryption isn't a firm requirement, one compromise might be to configure the IPSec tunnel with AH rather than ESP. You'll still get pretty high throughput and be protected against the data being modified. However, it will not be encrypted.
We are pleased to announce availability of Beta software for 16.6.3. 16.6.3 will be the second rebuild on the 16.6 release train targeted towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are looking for early feedback from custome...