From: WorkerBee (ciscobee@gmail.com)
Date: Wed Sep 19 2007 - 02:11:30 ART
DMVPN is not that great either. Additional GRE + ESP headers is going
to reduce the MTU size to less than 1500 bytes MTU. PMTUD only works
on TCP applications and provided your Firewall allows ICMP packets.
If I send a stream of ICMP/UDP packets into DMVPN network with MTU
1500 bytes, your routers are going to process switch/frag/de-frag like
mad...check it out using "show ip traffic" Cisco router is really
disappointing in CPU performance... I am still wondering why....Hence
MPLS any-to-any is better solution as compared to DMVPN any-to-any
topology.
Have you ever do a "show tech-support" and see the CPU jump to 99%?
That's crazy....
On 9/19/07, Joseph Brunner <joe@affirmedsystems.com> wrote:
> My old company gave the unique pleasure of configuring and MANAGING 50 FULLY
> meshed VPN Tunnels with the vpn concentrator!
>
>
>
> (this to support a voip solution).. Do you have any idea how long this took?
> (1,225 tunnels!!!!)
>
>
>
> God the day dmvpn and the 2811 came out, I partied heavily!
>
>
>
> LOL
>
>
>
> _____
>
> From: darth router [mailto:darklordrouter@gmail.com]
> Sent: Tuesday, September 18, 2007 11:43 PM
> To: Joseph Brunner
> Cc: Nick Payton; ccielab@groupstudy.com
> Subject: Re: Passed Security IE
>
>
>
> Joe,
>
> quit player hating on the VPN box. You know you love it :P
>
> Grats on the pass Nick!
>
> DR
>
> On 9/18/07, Joseph Brunner < joe@affirmedsystems.com
> <mailto:joe@affirmedsystems.com> > wrote:
>
> Very nice Nick. Congratulations!
>
> Last time you'll have to mess with that lame vpn concentrator, huh?
> Web vpn is a joke on Cisco products? Huh?
>
> LOL
>
> -----Original Message-----
> From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of Nick
> Payton
> Sent: Tuesday, September 18, 2007 10:35 PM
> To: ccielab@groupstudy.com
> Subject: Passed Security IE
>
> I passed the Security IE yesterday on my second attempt. I wanted to
> recognize the following for helping me pass:
>
>
>
> CCBootcamp - GREAT rack rentals, and I can't say enough about their support
> (Brad and Scott thank you!!). I also used their technology workbook and it
> proved to be very helpful.
>
>
>
> Ramy Sisy w/ CCBootcamp - awesome instructor who can basically recite
> configs from memory and more importantly can explain what each command does.
>
> Thanks Ramy!!
>
>
>
> InternetworkExperts - this is the second CCIE I have passed using their
> materials and I found their Security workbook to be top notch! Excellent as
> always Brian's and keep up the good work.
>
>
>
> It's was a lot of work, and I am glad to be done with the grind.for now at
> least. =)
>
>
> Good luck to all of you still in the process. Stay focused and positive and
> you will get your number!
>
>
>
> Regards,
>
> Nick Payton
>
> CCIE #13356 (R&S / Security)
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
This archive was generated by hypermail 2.1.4 : Sat Oct 06 2007 - 12:01:13 ART