(T) Rodzaje protokołów VPN

Rodzaje protokołów VPN

Rodzaje protokołów VPN

  • IPsec (Internet Protocol security)
  • SSL (Secure Socket Layer)
  • GRE (Generic Routing Encapsulation)
  • GRE 6to4 (IPv6 over IPv4)
  • DMVPN (Dynamic Multipoint VPN)
  • GETVPN (Group Encrypted Transport VPN)
  • EVPN (Easy Virtual Private Network)
Futures and BenefitsSite-to-site IPsec VPNCisco DMVPNCisco GET-VPNFlex VPNRemote Access VPN
Product interoperabilityMultivendorCisco onlyCisco onlyCisco onlyCisco only
Key exchangeIKEv1 and IKEv2IKEv1 and IKEv2IKEv1 and IKEv2IKEv2 onlyTSL/DTSL and IKEv2
ScaleLowThousands for hub-and-spoke; hundreds for partially meshed spoke- to-spoke connectionsThousandsThousandsThousands
TopologyHub-and-spoke; small-scale meshing as manageability allowsHub-and-spoke; on-demand spoke- to-spoke partial mesh; spoke-to-spoke connections automatically terminated when no traffic presentHub-and-spoke; any-to-anyHub-and-spoke; any-to-any, remote accessRemote access
RoutingNot supportedSupportedSupportedSupportedNot supported
QoSSupportedSupportedSupportedNative supportSupported
MulticastNot supportedTunneledNatively supported across MPLS and private IP networksTunneledNot supported
Non-IP protocolsNot supportedNot supportedNot supportedNot supportedNot supported
Private IP addressingSupportedSupportedRequires use of GRE or DMVPN with Cisco GET-VPN to support private addresses across the InternetSupportedSupported
High availabilityStateless failoverRoutingRoutingRouting IKEv2-based dynamic route distribution and server clusteringNot supported
EncapsulationTunneled IPsecTunneled IPsecTunneled-less IPsecTunneled IPsecTunneled IPsec/TLS
Transport networkAnyAnyPrivate WAN/MPLSAnyAny
Cisco IPsec VPN Solutions

Pozostałe tematy związane z protokołami VPN

Protokół IPsec

Protokół DMVPN


Robert T Kucharski

Cisco Network Engineer in GPW.

Dodaj komentarz