Here is the scenario:
I have DC connected to AWS using directconnect. The MTU on the directconnect link current is configured as 8500Byte. Now I want to run IPSec tunnel (between Cisco ASR1K and CRS1Kv) over the directconnect link and assuming I do not change the MTU on directconnect, what could be the MTU of the IPSec tunnel? Will it simply be "8500-IPSec encapsulation header size"?
I am basically trying to figure out if there would be fragmentation and if so, where would it be and will the fragmentation pre-encryption or post-encryption?
No comments:
Post a Comment