From the course: Learning Cryptography and Network Security
Unlock the full course today
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Comparing IPsec operating modes
From the course: Learning Cryptography and Network Security
Comparing IPsec operating modes
- [Instructor] In IPsec, both the authentication header and the encapsulating security payload support two modes; transport and tunnel. This is accomplished by adding new headers to the IP packet. We use both because many times when using IPsec, a data communication stream will use both transport and tunnel modes when traveling from point A to point B. First, we'll take a look at transport mode. Transport mode will encrypt only the data portion of each packet yet leaves the header unencrypted. We use transport mode when a device such as a firewall must see the source and destination address to route the packet and network address translation takes place. And then, after passing through the firewall and network address translation device, the packet then changes to tunnel mode before being sent onto the internet. Tunnel mode protects the entire original IP packet by encrypting both the header and the data portion. Tunnel…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.