Unlock Free Cisco Lessons - No Credit Card Needed!Sign up for Free
You are here: Home » VPN

Introduction to FlexVPN

Cisco supports many VPN types and most of them require different configurations, show commands, and debug commands. Each VPN type also supports different features. If you want to see what I am talking about, take a look at some of these examples:

FlexVPN is Cisco’s solution to simplify VPN deployments and covers all VPN types. For example:

  • Site-to-site
  • Hub and spoke (including spoke-to-spoke traffic).
  • Remote access

The only VPN type that FlexVPN doesn’t cover is GETVPN.

FlexVPN uses IKEv2 for all VPN types. IKEv2 is the successor of IKEv1 and has some interesting features:

  • More secure than IKEv1 because it supports the latest Suite B cryptographic algorithms.
  • Built-in support for dead peer detection (DPD) and NAT-Traversal.
  • Combined IKEv1 main and aggressive modes into one method called “initial”.
  • Supports native routing.
  • Besides certificates and PSKs, also supports EAP authentication.
  • XAUTH is replaced by EAP tunneling.

You can read more about IKEv2 in RFC 7296.

Continue Reading - Create a FREE Account

If you like to keep on reading, register now!

  • Get Instant Access to this full lesson + 332 more.
  • Learn CCNA, CCNP and CCIE R&S. Explained as simple as possible.
  • Unlock Access to 808 lessons by becoming a member.
  • Content created by Rene Molenaar (CCIE #41726)
Sign up for Free - in just 1 Minute ►
🔥 2126 people registered in the last 30 days

Tags: ,

Ask a question or start a discussion by visiting our Community Forum