Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    L2 VPN inside an Already Established IPSec VPN

    IPsec
    1
    1
    64
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      jtkowtko last edited by

      CS2021-VPN-Solution.jpg

      Greetings,

      I have the situation illustrated in the graphic attached. My task is to establish a layer 2 VPN underlying the IPSec VPN (or some kind of connection that will support BGP and not demand a billion traffic selectors for the IPSec VPN). I have 3 devices to work with. Vyatta, pfSense, and MicroTik. Which device would be best and what tech (VPN method) would be best in this scenario. Here are some requirements that need to be met:

      • The networks on the LEFT will be dynamic and will be updated inside a massive BGP enterprise and passed to the Site 1 BGP process

      • The networks on the RIGHT will be generally static.

      • The IPSec VPN is already established and is out of my control. Phase 2 traffic selectors include only the endpoints for the IPSec tunnel.

      Any help would be greatly appreciated.

      1 Reply Last reply Reply Quote 0
      • First post
        Last post

      Products

      • Platform Overview
      • TNSR
      • pfSense
      • Appliances

      Services

      • Training
      • Professional Services

      Support

      • Subscription Plans
      • Contact Support
      • Product Lifecycle
      • Documentation

      News

      • Media Coverage
      • Press
      • Events

      Resources

      • Blog
      • FAQ
      • Find a Partner
      • Resource Library
      • Security Information

      Company

      • About Us
      • Careers
      • Partners
      • Contact Us
      • Legal
      Our Mission

      We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

      Subscribe to our Newsletter

      Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

      © 2021 Rubicon Communications, LLC | Privacy Policy