Hello Hans,
GETVPN doesn't work with transport mode because it uses Tunnel Mode with
header preservation, i.e. copy the original IP header information. Transport
mode isn't an option.
This allows you to use the existing IP routing table to route traffic and to
encrypt using a group Security Association (SA). No need for overlay routing
with the use of a GRE tunnel as you would in something like DMVPN. It also
allows Multicast traffic to follow the optimal path between sources and
destinations. Again depending on the underlying infrastructure.
Hope this helps.
Thanks,
Thomas
On Tue, Nov 3, 2009 at 12:38 PM, Hans None <acsyao_at_hotmail.com> wrote:
> All,
>
>
>
> Does anyone know why Cisco GET VPN does not work in IPSEC transport mode?
>
>
>
>
>
> Thanks,
>
> _________________________________________________________________
> Bing brings you maps, menus, and reviews organized in one place.
>
> http://www.bing.com/search?q=restaurants&form=MFESRP&publ=WLHMTAG&crea=TEXT_M
> FESRP_Local_MapsMenu_Resturants_1x1<http://www.bing.com/search?q=restaurants&form=MFESRP&publ=WLHMTAG&crea=TEXT_M%0AFESRP_Local_MapsMenu_Resturants_1x1>
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
Blogs and organic groups at http://www.ccie.net
Received on Tue Nov 03 2009 - 19:58:53 ART
This archive was generated by hypermail 2.2.0 : Tue Dec 01 2009 - 06:36:28 ART