From the course: Learning Cryptography and Network Security
Join today to access over 24,700 courses taught by industry experts.
Comparing IPSec operating modes
From the course: Learning Cryptography and Network Security
Comparing IPSec operating modes
An IPsec VPN can operate in two modes: transport and tunnel. In this segment, we'll compare each mode and outline use cases for each. First, let's talk about transport mode. In this mode, only the data portion of each packet is encrypted, leaving the header unencrypted. Transport mode is more efficient and uses less overhead, making it ideal for scenarios where devices like firewalls or NAT devices need to access the source and destination addresses for routing or Network Address Translation. After passing through the firewall or NAT device, the packet typically transitions to tunnel mode before being sent out onto the Internet. Tunnel mode is used to create secure network connections by protecting the entire original IP packet, encrypting both the header and data portion. In this mode, a new header is added to the IP packet and IPsec treats the original packet as the data portion. Tunnel mode is commonly used between two gateways, where the gateway often acts as a proxy for the hosts…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.