nanog mailing list archives
Re: large scale ipsec
From: Christopher Morrow <morrowc.lists () gmail com>
Date: Fri, 1 Nov 2013 11:07:47 -0400
On Fri, Nov 1, 2013 at 10:30 AM, David Barak <thegameiam () yahoo com> wrote:
Hi Jan, Please define "large scale". Is that by number of endpoints, throughput, or some other metric? How big is big?
it's fair to believe that there are 'lots' of ipsec deployments where there are ~1000 or so endpoints (network endpoints) connected in a 'vpn'. There are also certainly large volume ipsec deployments (I recall an ipsec vpn problem at a former company for a single 400mbps 'flow' between endpoints, maybe david remembers this as well). One might look at MS's documentation about deploying end-to-end ipsec in their enterprise for one example of peer-to-peer ubiquitous ipsec. it'd sure be helpful to have some dimensions to the OP's question though. -chris
Current thread:
- large scale ipsec Jan Schaumann (Nov 01)
- Re: large scale ipsec Paul Stewart (Nov 01)
- Re: large scale ipsec David Barak (Nov 01)
- Re: large scale ipsec Christopher Morrow (Nov 01)
- Re: large scale ipsec Jan Schaumann (Nov 01)
- Re: large scale ipsec Christopher Morrow (Nov 01)
- Re: large scale ipsec Christopher Morrow (Nov 01)
- <Possible follow-ups>
- Re: large scale ipsec Scott Weeks (Nov 01)