Home
Topics
VPNs and WAN Security
VPN setup and configuration
IPsec modes: Understanding transport vs. tunnel modes for VPN security

IPsec modes: Understanding transport vs. tunnel modes for VPN security

Chris Partsenidis

When building a virtual private network (VPN), the Internet Protocol security (IPsec) protocol is an essential ingredient for properly

Requires Free Membership to View

Login

By submitting you agree to receive email communications from
TechTarget and its partners. Privacy Policy Terms of Use.

protecting VPN traffic. IPsec's primary objective is to provide security services for IP packets, and these services include data encryption, authentication and protection against replay from hackers.

Discovering IPsec modes

IPsec can actually operate in two different modes: IPsec tunnel mode and IPsec transport mode. Deciding which IPsec mode to use depends dramatically on your network topology and the purpose of your VPN.

To help explain these modes and their applications, we will provide a few examples in the following articles:

Part 1: IPsec tunnel mode
Part 2: IPsec transport mode
Part 3: Implementing IPsec to protect your VPN data
Part 4: GRE IPsec tunnel and transport mode overhead

About the author: Chris Partsenidis is the founder and senior editor of www.Firewall.cx -- one of the few websites Cisco Systems recommends in its world class Cisco Academy program. Firewall.cx is also the only official Cisco Press reviewer in the world. He has a degree in electrical technology and holds the following certifications: CNA for Netware 3, 4 and 5; Cisco's CCNA; Microsoft's MCP; DCE (D-link Certified Engineer); LCP (Linux Certified Professional); Network+; A+; Symantec STS; SSE; SSE+ and Hellas-Sat Certified Engineer.

More News and Tutorials

Articles

Related glossary terms

Terms for Whatis.com - the technology online dictionary

This was first published in June 2012

More from Related TechTarget Sites

Networking
Mobile Computing
Telecom
Unified Communications
Networking Channel
Networking UK
Data Backup

Networking
- Troubleshooting network problems with good governance and design
  
  Packet loss, oversubscription, unpatched and inconsistent switch software still plague enterprise networks. Find out how engineers are fighting back.
- Networking blogs: Overlay Transport Virtualization, SDDC practicality
  
  In this week's networking roundup, bloggers advise how to use Overlay Transport Virtualization and discuss what's needed for a mature SDDC.
- Q&A: Why WLAN test tools should evolve quickly -- but likely won't
  
  Network consultant Peter Welcher talked to SearchNetworking about the evolution of WLAN test tools as more businesses look to wireless networks.
Mobile Computing
- Bringing BYOD to your enterprise
  
  Bring your own device (BYOD) can be a boon for both employees and enterprises, but clear policies and management tools are needed.
- Meeting technical requirements for mobile health care deployments
  
  IT departments deploying mobile health care solutions must ensure that using mobile devices in health care settings doesn't violate federal laws or compromise security.
- Making the call: Distributed antenna systems and in-building wireless
  
  Distributed antenna systems and in-building wireless solutions are two options to improve wireless cellular coverage within an enterprise facility.
Telecom
- Smartphone adoption spurs advanced services demand in Latin America
  
  Latin American smartphone adoption is more robust than North America's, and the consumers are more mobile-friendly than their peers in developed economies.
- Need for wireless network upgrade is key AT&T/T-Mobile driver
  
  Rising demand for high-quality network service delivery will require operators to undertake a massive wireless network upgrade, driving deals like the AT&T/T-Mobile acquisition.
- Video: ACG Research dissects telecom routing and switching market
  
  In this ACG Research HotSeat video, Managing Partner Ray Mota gives viewers a quarterly update on the telecom service provider routing and switching market.
Unified Communications
- Is there a way to mix different unified communications solutions?
  
  It is possible to mix different unified communications solutions to fit your needs, says UC expert Jon Arnold.
- Communications outsourcing: North American vs. European market
  
  Communications outsourcing is a more popular practice overseas. As IT models change and companies expand globally, U.S. enterprises will see value.
- All You Can Meet video bridge prices meet more users' needs
  
  Blue Jeans Network, which provides hosted video bridges, is delivering All You Can Meet video conference pricing plans to enterprises.
Networking Channel
- Aruba Networks Partner Program Checklist
  
  Value-added resellers and service providers interested in reselling Aruba networking hardware and software can learn the benefits of becoming an Aruba Networks partner with this standardized checklist. Compare Aruba's reseller partner program with other vendors' offering similar products.
- NetScout Systems Partner Program Checklist
  
  Learn the benefits of becoming a NetScout Systems reseller partner with our Partner Program Checklist.
- Visage Mobile Partner Program Checklist
  
  Learn the benefits of becoming a Visage Mobile reseller partner with our Partner Program Checklist.
Networking UK
- O2 signs UK deal for mobile management offering: SNUK news in brief
  
  SearchNetworkingUK Briefs provides a summary of the week’s new product, services and appointment announcements. This week includes mobile management and much more.
- FCoE or iSCSI? Doesn’t matter! It’s about the Ethernet
  
  Some question the path to network convergence - is it through FCoE or iSCSI? Either way, preparing the existing infrastructure will be key to a healthy network environment.
- Is cloud computing bad for your networking career?
  
  Many network managers may have an emotional resistance to cloud computing, but experts explain the economic benefits and positive career impact outsourcing data centre resources can have.
searchDataBackup
- Quantum vmPRO gains capacity, LTFS tape support
  
  Quantum upgrades its vmPRO virtual machine backup appliance, supporting 24 TB of pre-deduped data and LTFS tape in a virtual appliance.
- Veeam Software adds WAN acceleration, tape support for VM backup
  
  Veeam upgrades its virtual machine backup software, building WAN acceleration and native tape support into Backup & Recovery v7.
- Enterprise backup software avoids storage sales slump
  
  While storage vendors reported slow sales at start of 2013, Symantec and CommVault had success with enterprise backup software.

All Rights Reserved,Copyright 2009 - 2013, TechTarget