This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

FIGW - IPSEC + VXLAN + FRAGMENTATION AND REASSEMBLY over L2 link

FIGW - IPSEC + VXLAN + FRAGMENTATION AND REASSEMBLY over L2 link

Go to solution
EF
Contributor II

‎11-22-2021 03:20 AM

Hi team,

In a L2 connection through ISP with MTU less of 1600bytes, I´m using FIGWs for fabric extend (VXLAN) and fragmentation & reassembly to establish isis adjacencies  without problem.

Now I want to add IPSEC but I review all the topologies avalaible for IPSEC and all of them are trought L3, the question is, in a link L2 is IPSEC topology supported?

Regards

EF
0 Kudos
1 ACCEPTED SOLUTION

Go to solution
Miguel-Angel_RO
Valued Contributor II
In response to EF

‎11-26-2021 05:23 AM

EF,

IPSEC is always over L3. MACSEC is over L2.
Here a possible setup
bcc6d49f81314676b3ada78d661674f7.pngMig

View solution in original post

0 Kudos
5 REPLIES 5

Go to solution
EF
Contributor II
In response to Ludovico_Steven

‎11-29-2021 09:57 AM

Hi Ludovico,

this is the problem, if I´m not wrong,  that "set global wan-intf-gw-ip  " is mandatory for IPSEC config, but in a l2 connection I dont have it.

Regards

EF
0 Kudos
GTM-P2G8KFN