Wednesday, February 20, 2008

Tunnel-less VPN with Cisco Group Encrypted Transport (GET) - Part1

Nowadays, the requirement for encrypted communication between business locations is part of the standard requirements from our customers. More and more regulatory laws force the use of encrypted communication.

The classic scalability issue with IPSec site-to-site encryption is that it requires each location to have a VPN to every other location. In other words, we will need N^2 tunnels defined on a network with N devices. This is obviously, a non scalable solution.



A partial list of this and other scalability issues of the site-to-site VPNs are:
  • Require a full mesh. In other words, require N^2 tunnels to be defined.
  • Create an overlay logical network over the network. In many cases, this also means, having different routing tables. One for the encrypted path and one for the regular path.
  • Only basic QoS supported
  • Very inefficient multicast replication


To work around these issues Cisco created the Group Encrypted Transport (GET) VPN. Among the benefits GET VPN offer are:
  • Scalable architecture
  • Any-to-any instant connectivity
  • Native routing with no overlays
  • Support for Advanced QoS
  • Efficient Multicast replication
  • Transport agnostic (works with private LAN/WAN, FR/AATM, IP, MPLS)

GET VPN defines one or more key-servers which authenticates group members, distributes keys and policies. The traffic is encrypted on demand basis by the group members (i.e. participant routers). Contrary to IPSec which defines a new IP header, GET VPN preserve the original IP header and thus maintain QoS and multicast information for the connection.



Representation of an IP packet, IPSec Encrypted Packet and GET Encrypted Packet:
For more technical information on Cisco Group Encrypted Transport VPN visit this site.

The next part of this tutorial will cover actual configuration examples of GET VPN.
Posted by Unknown at 2:52 PM
Labels: , ,

19 comments:

  1. mind.itJanuary 13, 2017 at 12:38 AM

    This is a great inspiring article.I am pretty much pleased with your good work.You put really very helpful information. Keep it up. Keep blogging. Looking to reading your next post. best vpn services

    ReplyDelete
  2. Lauren GottliebJanuary 17, 2017 at 7:23 AM

    I really appreciate this wonderful post that you have provided for us. I assure this would be beneficial for most of the people. VPN China

    ReplyDelete
  3. zohaibApril 27, 2017 at 1:46 PM

    nice this funcs...

    ReplyDelete
    Replies
    1. James LopezFebruary 9, 2021 at 3:38 PM

      professionals could check out the and determine if it might fit with the objectives of a task or job. they need to determine whether the would be ready to complete the work as a task couldn't be completed without the proper. Women's Bikini Swimsuits

      Delete
  4. zohaibApril 27, 2017 at 1:48 PM

    fellying cool,,,,,

    ReplyDelete
  5. Aniqa RajputJune 30, 2017 at 1:33 PM

    You will have to strictly adhere to the company policies while using the network. This may restrict you from doing things that do not concern the company.one of top vpn i used

    ReplyDelete
  6. James harperJuly 3, 2017 at 6:24 AM

    It is very important for the device that you use to be compatible. Make sure you ask about the service before you plan to use VPN services on your iPad. Best VPN service

    ReplyDelete
  7. UnknownNovember 30, 2017 at 8:15 PM

    Thanks

    ReplyDelete
  8. HoraceJanuary 15, 2018 at 12:16 AM

    Your article is absolutely right. I operate a small freelance web development business at home and some of my clients are looking for ways to access their website’s visitor’s information. I don’t question them why but I’m sure it’s just to send them promotional emails or to make sure they’re speaking to the right target audience. Because I know that’s how some sites work, I wanted to give protection for myself so I tried out VPN services from ExpressVPN. So far, it seems to be working out well. I haven’t completed the 30-day money-back guarantee period yet, but I think I’ll continue using the software.

    ReplyDelete
  9. zaved khanDecember 12, 2018 at 9:27 PM

    "I’m truly enjoying the design and layout of your website.
    It’s a very easy on the eyes which makes it much more enjoyable"
    Regards: Dream Market

    ReplyDelete
  10. elizabethleeryFebruary 11, 2020 at 9:36 AM

    I havent any word to appreciate this post.....Really i am impressed from this post....the person who create this post it was a great human..thanks for shared this with us. dedicated vps

    ReplyDelete
  11. zaved khanNovember 25, 2020 at 8:08 PM

    "Your style is unique in comparison to other people I have read stuff from.
    Thanks for posting when you have the opportunity, Guess I’ll just bookmark this
    web site."
    Regards: Eve Hunt

    ReplyDelete
  12. DannyFebruary 21, 2021 at 10:19 PM

    In call center business, you need the best security system. Otherwise, business will not trust to conduct any type of business. If they feel that call centers can leak their information they will refuse to hire. So you can choose ours to have the best call centers.

    ReplyDelete
  13. love back SolutionFebruary 23, 2021 at 2:09 AM

    You did really good work. I really appreciate your new and different post. Please guys keep it up and share with us some unique

    Vashikaran Specialist in Chennai Vashikaran Specialist in Jaipur  Vashikaran Specialist in Karnataka  Vashikaran Specialist in London UK  Vashikaran Specialist in Dubai  Vashikaran Specialist in Australia  Vashikaran Specialist in Punjab  

    ReplyDelete
  14. AlanBarlowMarch 24, 2021 at 10:31 PM

    Just learned something new, thanks for sharing all this information with us.
    Buy custom logo design

    ReplyDelete
  15. rutujaApril 22, 2021 at 4:47 AM

    I am very happy after visiting your website with very useful information. I am from one of the digital marketing agency... To visit my agency click on link Visitdigitalguru

    ReplyDelete
  16. HarisSeptember 13, 2021 at 11:55 PM

    This content material is written very well. Your use of formatting when making your factors makes your observations very clear and clean to apprehend. Thank you.


    law dissertation Writing Service

    ReplyDelete
  17. NancyJanuary 23, 2023 at 2:19 AM

    Prepaid calling cards are the best choice for many people for all of these reasons. Reload your card before it runs out of credit, so you don't run out of money. SIM Card for IoT

    ReplyDelete
  18. NancyJanuary 25, 2023 at 11:37 PM

    Bring the glass cleaner, toilet bowl cleaner and brush, tub and tile cleaner, and a towel or sponge for mopping the floor if you start in the bathroom. Work your way down to the floor, starting at the top. Office cleaning services near me Austin

    ReplyDelete

Subscribe to: Post Comments (Atom)