[cisco-voip] Anyone doing large-scale VPNs?

Robert Kulagowski rkulagow at gmail.com
Sat Apr 16 22:02:00 EDT 2011


Our existing contract with a global MPLS provider is going to be
ending in about a year, so it's time to start planning what to do.
(We have 50+ sites in multiple countries.)

There's a certain appeal to DMVPN, but the throughput rates on the
2800 series routers leave much to be desired, especially once the Mbps
goes up.  (I've read the even unencrypted traffic will max out the
router at around 45Mbps, so having a gigE port seems like an odd
choice).

The ASA 55xx seems nice because it's optimized for encryption, but it
doesn't appear to have DMVPN.  If spoke-to-spoke is a requirement,
then is the only solution to setup n-1 routes / tunnels in each ASA?

Given that all handoffs from the provider are going to be ethernet,
does it even make sense to put in a 2900 series router if the various
WIC cards are never going to be populated?


More information about the cisco-voip mailing list