Re: Hiding internal network from MPLS WAN

From: voice guru (guru.voice@gmail.com)
Date: Tue Feb 17 2009 - 12:49:08 ARST

• Next message: Tyson Scott: "RE: Block RFC 1918 Addresses"
• Previous message: Jared Scrivener: "RE: Block RFC 1918 Addresses"
• Maybe in reply to: voice guru: "Hiding internal network from MPLS WAN"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Dear experts,

thanks for your suggestions, I am going bit differently on the design find
below the details:

I would be implementing GET between all devices on MPLS, I would be running
NHRP to run my internal routing using OSPF on the same devices. Once the
network is converged using NHRP and OSPF then my firewall behind the router
Juniper SSG will implement Dynamic route based Fullmesh VPNs. every thing
seems fine except one problem, I wouldnt be able to encrypt the locally
generated traffic on edge routers, I want to encrypt the NHRP which will be
orignated from the routers to be encrypted.

Any suggestion will be appreciated

Thanks,
Guru

Blogs and organic groups at http://www.ccie.net

• Next message: Tyson Scott: "RE: Block RFC 1918 Addresses"
• Previous message: Jared Scrivener: "RE: Block RFC 1918 Addresses"
• Maybe in reply to: voice guru: "Hiding internal network from MPLS WAN"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Sun Mar 01 2009 - 09:44:11 ARST