Re: large-scale IPSEC tunnel deployment

[Alex Yuriev <alex () yuriev com>]

> Orchestream has some of this functionality for setting the tunnels up,
> you can then use the corba interface to setup management with
> tools like SMARTS. The other problem is managing the keys, if you
> don't have a CA it will be painful if you need to change the keys. We
> have had some success with RSA's CA platform and IOS on this.

Since you are saying "some success" would you mind elaborating on what did
not work well with IOS?

Thanks,
Alex