Cisco GETVPN Alternative from Extreme / Enterasys / Avaya

  • 0
  • 1
  • Question
  • Updated 1 year ago
  • Answered

I have to migrate some customer facilities (10 Locations) and the CIO has orderd a MPLS via Vodafone.

Customer demand encryption over MPLS but Provider say, that ́s not our Job, you have to find an own solution.


And erverybody only speaks about GETVPN from Cisco when encryting MPLS Connections ..

Is there no way to encryt this mpls with devices from Extreme / Enterasys ?

The customer get a full solution for the Network from Extreme ... but now i have to put cisco devices into the Network, and this is not so nice :-)


Regards

Christian


Photo of info@systemhaus-genthin.de

Posted 1 year ago

  • 0
  • 1
Photo of Steve Ballantyne

Steve Ballantyne

  • 5,806 Points 5k badge 2x thumb
Hello Christian,

I understand your problem. And yes, with MPLS, the vendor is usually just creating a VLAN and putting both ends of your connections onto it. In which case - encryption is really not their problem. I have a mix of MPLS and VPN's for my remote sites.

In the event of an unencrypted pipe, you can set up your access points to handle encryption for you. Extreme gives you several choices there. Here is a screenshot ...



So for my VPN sites, I leave it to Disabled. No sense in double-encrypting and creating more overhead. For an MPLS site, I set it to "Encrypt control & data traffic between AP & Controller". It works quite well!

Note that you can make that setting in several places. You can pick AP's one at a time and set it. You can select a dozen or more and choose to do a multi-edit. Or the best way is to build up sites in your configuration, and then whatever you set on a site is automatically pushed out to your AP's.

Hope that helps!