DMVPN with IPsec Phase 3: Difference between revisions
Added comments. CTRL+F and search for "###" until no matches are found. Delete comments afterwards. |
mNo edit summary |
||
| Line 1: | Line 1: | ||
==Introduction== | ==Introduction== | ||
'''DMVPN''' (Dynamic Multipoint Virtual Private Network) is a dynamic tunneling form of a virtual private network capable of creating a VPN network without having pre-configure all possible tunnel end-point peers. DMVPN is initially configured to build out a HUB and SPOKE network, where each new SPOKE can join the network with minimal effort. The main benefits of DMVPN would be that it simplifies router configuration, has high scalability, good performance with better bandwidth, and secure routing when used in combination with IPsec. | |||
'''DMVPN''' has three phases that route data differently: | |||
Phase 1: All traffic flows from the spoke to and through the hub. | |||
Phase 2: Start with Phase 1 then allows spoke-to-spoke tunnels based on demand and triggers. Phase 2 has different routing, where packet forwarding is being done using the IP routing table. | |||
Phase 3: Starts with Phase 1 and improves the scalability and has fewer restrictions than Phase 2. Phase 3 allows the summarization of routes from hub to spokes. So again spokes wouldn’t need specific routes to other spokes networks. | |||
This article contains instructions on how to configure DMVPN Phase 3 between a "Hub" and two "Spokes" using Teltonika devices. | |||
==Prerequisites and overview== | ==Prerequisites and overview== | ||