Questions re: VPN protocols globally

Eric Germann ekgermann at
Wed Oct 5 16:06:07 UTC 2016

IPSec and corporate.

Customers will connect to their respective regional sites separately.  Any ITAR concerns there?

> On Oct 5, 2016, at 12:01 PM, Christopher Morrow <morrowc.lists at> wrote:
> On Tue, Oct 4, 2016 at 11:15 PM, Eric Germann <ekgermann at <mailto:ekgermann at>> wrote:
> I’ve been charged with building a global VPN as an overlay on top of a certain 3 letter company who also sells lots of stuff.
> you say 'vpn' do you mean 'mpls vpn' or 'ipsec vpn over intertubes' ?
> We’re looking at
> US East
> US West
> US Central (eventually)
> Brazil
> Singapore
> Frankfurt
> Ireland
> Sydney
> Maybe Canada
> Maybe India (outsourcesrs)
> In the planning stages now and wondering if there are any protocols I need to stay away from ITAR wise with this list of countries.
> Contemplating Suite B with GCM, etc and AES acceleration.
> most places dont' really care about encryption if your use is 'for corporate use', not providing use by external parties (internet access sorts of things), I believe.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3705 bytes
Desc: not available
URL: <>

More information about the NANOG mailing list