Questions re: VPN protocols globally

Eric Germann ekgermann at semperen.com
Wed Oct 5 16:06:07 UTC 2016


IPSec and corporate.

Customers will connect to their respective regional sites separately.  Any ITAR concerns there?


> On Oct 5, 2016, at 12:01 PM, Christopher Morrow <morrowc.lists at gmail.com> wrote:
> 
> 
> 
> On Tue, Oct 4, 2016 at 11:15 PM, Eric Germann <ekgermann at semperen.com <mailto:ekgermann at semperen.com>> wrote:
> I’ve been charged with building a global VPN as an overlay on top of a certain 3 letter company who also sells lots of stuff.
> 
> 
> you say 'vpn' do you mean 'mpls vpn' or 'ipsec vpn over intertubes' ?
>  
> We’re looking at
> 
> US East
> US West
> US Central (eventually)
> Brazil
> Singapore
> Frankfurt
> Ireland
> Sydney
> Maybe Canada
> Maybe India (outsourcesrs)
> 
> In the planning stages now and wondering if there are any protocols I need to stay away from ITAR wise with this list of countries.
> 
> Contemplating Suite B with GCM, etc and AES acceleration.
> 
> 
> most places dont' really care about encryption if your use is 'for corporate use', not providing use by external parties (internet access sorts of things), I believe.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3705 bytes
Desc: not available
URL: <http://mailman.nanog.org/pipermail/nanog/attachments/20161005/4c531f64/attachment.bin>


More information about the NANOG mailing list