From: Jared Scrivener (jscrivener@ipexpert.com)
Date: Wed Mar 18 2009 - 00:07:00 ART
The simplest way is to use the built-in Windows IPSec policies (they're easy
to configure). Just pick one with AES256 and IPSec transport mode then
enable it for the traffic that needs encrypting.
Cheers,
Jared Scrivener CCIE3 #16983 (R&S, Security, SP), CISSP
Technical Instructor - IPexpert, Inc.
Telephone: +1.810.326.1444
Fax: +1.810.454.0130
Mailto: jscrivener@ipexpert.com
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
stevek@ccie.com.au
Sent: Tuesday, 17 March 2009 9:24 PM
To: ccielab@groupstudy.com
Subject: single vlan traffic seperation
O.K experts, here is a topic ive been trying to implement... Is there any
way you can encrypt user data traffic but not voice traffic within a
single vlan over WAN...??I have clients in remote site that use Cisco
soft-phones in their desktops, the desktops connect via single Ethernet
port to a L2/L3 switch in a single vlan configuration. The problem is the
client is asking to run end to end IPSec AES256 encryption between the
VDI desktop and the server, selectively applying th e encryption to only
the tcp port responsible for the data traffic but not the voice traffic
is this possible..? how can i selectively encrypt the data traffic but
not the voice traffic over the WAN,,,..???? THANKS in advanced!Steve
Blogs and organic groups at http://www.ccie.net
This archive was generated by hypermail 2.1.4 : Mon Apr 06 2009 - 06:44:05 ART