The Router MC supports the following tunneling technologies:
-
IPSec – IPSec is a framework of open standards that provides data
confidentiality, data integrity, and data origin authentication between peers
that are connected over unprotected networks, such as the Internet.
-
IPSec with GRE – GRE is a tunneling protocol that can encapsulate a
variety of protocol packet types inside IP tunnels. GRE accomplish this by
creating a virtual point-to-point link to devices at remote points over an IP
internetwork.
-
IPSec with GRE over a frame relay network – This option provides all
the advantages of using IPSec with GRE and the ability to create secure VPN
tunnels over a frame relay network. Router MC supports a frame relay topology
in which the hub acts only as a VPN endpoint, while each spoke acts as both a
VPN endpoint and a frame relay endpoint. This means that there must be a router
in the hub subnet before the VPN endpoint at the hub that acts as the second
frame relay endpoint.
-
IPSec with GRE and DMVPN – Dynamic Multipoint VPN (DMVPN) combines
GRE tunnels, IPSec encryption, and Next Hop Resolution Protocol (NHRP). It
allows for the management of devices with dynamically assigned IP addresses. It
also enables direct spoke-to-spoke communication, without the need to go
through the hub.
Figure
illustrates a
summary of the properties of IPSec versus IPSec with GRE.