K7VE - John k7ve@k7ve.org wrote:
Great idea - wrong platform. Cisco specific solutions aren't reachable for many.
Look at Linux (Raspberry Pi) solutions or powerful, affordable routers like MIkroTik and common tunneling protocols like OpenVPN, L2TP, GRE, etc.
The big advantage of Cisco DMVPN is that it can create a fully meshed tunnel network with endpoints on dynamic addresses, with only one (or a few) central hubs on static addresses, fully automatically.
It is like what you have with a JNOS or Linux route importing encap.txt all the time, but without the hassle.
Other VPN solutions are usually hub-and-spoke, where all internode traffic goes through the central hub. It is like connecting to net-44 by tunneling everything to 169.228.66.251 instead of loading a routing table.
Rob
Other systems have "Mesh" style networking as well.
------------------------------ John D. Hays K7VE PO Box 1223, Edmonds, WA 98020-1223 http://k7ve.org/blog http://twitter.com/#!/john_hays http://www.facebook.com/john.d.hays
On Thu, Jun 27, 2013 at 12:27 PM, Rob Janssen pe1chl@amsat.org wrote:
(Please trim inclusions from previous messages) _______________________________________________ K7VE - John k7ve@k7ve.org k7ve@k7ve.org wrote:
Great idea - wrong platform. Cisco specific solutions aren't reachable for many.
Look at Linux (Raspberry Pi) solutions or powerful, affordable routers like MIkroTik and common tunneling protocols like OpenVPN, L2TP, GRE, etc.
The big advantage of Cisco DMVPN is that it can create a fully meshed tunnel network with endpoints on dynamic addresses, with only one (or a few) central hubs on static addresses, fully automatically.
It is like what you have with a JNOS or Linux route importing encap.txt all the time, but without the hassle.
Other VPN solutions are usually hub-and-spoke, where all internode traffic goes through the central hub. It is like connecting to net-44 by tunneling everything to 169.228.66.251 instead of loading a routing table.
Rob
44Net mailing list 44Net@hamradio.ucsd.edu http://hamradio.ucsd.edu/mailman/listinfo/44net http://www.ampr.org/donate.html
Rob,
I like your thinking. Are you a Cisco guy too? I have been for too long :-)
I am still partial to hardware based solutions.
Jesse - WC3XS, CCNP Voice, CCNP RS, CCDA
Sent from my iPhone
On Jun 27, 2013, at 3:27 PM, Rob Janssen pe1chl@amsat.org wrote:
(Please trim inclusions from previous messages) _______________________________________________ K7VE - John k7ve@k7ve.org wrote:
Great idea - wrong platform. Cisco specific solutions aren't reachable for many.
Look at Linux (Raspberry Pi) solutions or powerful, affordable routers like MIkroTik and common tunneling protocols like OpenVPN, L2TP, GRE, etc.
The big advantage of Cisco DMVPN is that it can create a fully meshed tunnel network with endpoints on dynamic addresses, with only one (or a few) central hubs on static addresses, fully automatically.
It is like what you have with a JNOS or Linux route importing encap.txt all the time, but without the hassle.
Other VPN solutions are usually hub-and-spoke, where all internode traffic goes through the central hub. It is like connecting to net-44 by tunneling everything to 169.228.66.251 instead of loading a routing table.
Rob _________________________________________ 44Net mailing list 44Net@hamradio.ucsd.edu http://hamradio.ucsd.edu/mailman/listinfo/44net http://www.ampr.org/donate.html
-
Jesse Hindmarsh -
K7VE - John -
Rob Janssen