On Nov 15, 2011, at 10:52 PM, Michael Richardson wrote: > >>>>>> "Mark" == Mark Boltz <mark.bo...@stonesoft.com> writes: > Mark> With all due respect to Cisco, the larger problem we're trying > Mark> to address, is in part the fact that DMVPN and ACVPN are > Mark> vendor specific implementations. And the goal of the > Mark> implementation we're seeking is *large scale* P2P VPNs. > > Assume that they are available on a wide variety of platforms, what is > broken in the technology?
I don't know, but I've been told that ACVPN and DMVPN both rely on NHRP and GRE tunnels. I have also heard (and please someone correct me if I'm wrong) that they don't interoperate. So the tools are apparently not enough. > Mark> Picture a hypothetical where a larger interest desires an > Mark> IPsec VPN, in, say the airline industry. We're talking about > Mark> several thousand aircraft from several manufacturers. All in > > We've been through all of this 15 years ago with AIAG's ANX. You really want to tout that experience as a success story? _______________________________________________ IPsec mailing list IPsec@ietf.org https://www.ietf.org/mailman/listinfo/ipsec