[179356] in North American Network Operators' Group
Re: Voip encryption
daemon@ATHENA.MIT.EDU (Ray Van Dolson)
Thu Apr 9 11:51:35 2015
X-Original-To: nanog@nanog.org
Date: Thu, 9 Apr 2015 08:50:45 -0700
From: Ray Van Dolson <rvandolson@esri.com>
To: Christopher Morrow <morrowc.lists@gmail.com>
In-Reply-To: <CAL9jLaY7mcoPT1pT-VPvyK4KKOjGVtEyC4F2D=aJHiVJcqK59w@mail.gmail.com>
Cc: nanog list <nanog@nanog.org>
Errors-To: nanog-bounces@nanog.org
On Thu, Apr 09, 2015 at 11:04:06AM -0400, Christopher Morrow wrote:
> On Thu, Apr 9, 2015 at 6:21 AM, Simon Brilus <sbrilus@blueyonder.co.uk> wrote:
> > Hi - I have a PCIDSs requirement to encrypt VoIP over a 3rd party VPLS
> > network. Has anyone dealt with this. I'd really not use VPN's over the VPLS
> > so am looking at hardware WAN encrypters.
>
> wait, you don't want to do some VPN thing over the VPLS network links,
> but you think that hardware wan encrypters are going to work on the
> VPLS links? Did you plan on installing one of these devices at the
> carrier facility? and at all the other possible hops along the way?
>
> or were you hoping that the encrypter would not muddle with the L2
> payload, but leave the L2 headers intact?
>
> > Any guidance appreciated.
>
Lost the original post, but why not SIP+TLS & SRTP?
Ray
