IP layer / IPSec

David Gillett dgillett at NIKU.COM
Thu Mar 15 16:09:28 EST 2001


  Trying to shoehorn tunnelling onto a linear version of a layered protocol
stack is probably a mistake.

  Picture, instead, TWO sets of layers.  The "underside" of the tunnel looks
more or less like layer 4, riding on top of the network layer of the outer
stack.  The "topside" of the tunnel, though, looks like layer 2, and
supports the network layer of the inner *encapsulated* stack.

  Mapped onto a single set of layers, then, the tunnel boundary looks like a
retrograde discontinuity, or a pleat.
  Does that help?

David Gillett
Senior Network Engineer
(650) 701-2702
Niku Corp. "Transforming the Service Economy"



-----Original Message-----
From: VPN Mailing List [mailto:VPN at SECURITYFOCUS.COM]On Behalf Of
Olivier Bekoin
Sent: Wednesday, March 14, 2001 11:07 AM
To: VPN at SECURITYFOCUS.COM
Subject: IP layer / IPSec


"The term IPsec (IP Security Protocol) indicates a protocol of security,
defined to the IETF, which aims at making safe flows on the level IP."
(hhtp://www.hsc.fr)

I have a confusion and i ask this question about IP layer (network layer)
and IPSec.

is it the network layer of OSI model or the network layer of mapage TCP/IP
in 4 layers of the model with 7 layers OSI?

Thanks in advance

VPN is sponsored by SecurityFocus.COM

VPN is sponsored by SecurityFocus.COM




More information about the VPN mailing list