ICR-1601
133
4.1.1
IPSec
Internet Protocol Security (IPSec) is a protocol suite for securing Internet Protocol (IP) communications
by authenticating and encrypting each IP packet of a communication session. IPSec includes protocols for
establishing mutual authentication between agents at the beginning of the session and negotiation of
cryptographic keys to be used during the session.
An IPSec VPN tunnel is established between IPSec client and server. Sometimes, we call the IPSec VPN
client as the initiator and the IPSec VPN server as the responder. This router can be configured as different
roles and establish number of tunnels with various remote devices. Before going to setup the VPN
connections, you may need to decide the scenario type for the tunneling.
IPSec Tunnel Scenarios
To build IPSec tunnel, you need to
fill in remote gateway global IP, and
optional subnet if the hosts behind
IPSec peer can access to remote
site
or
hosts.
Under
such
configuration, there are four
scenarios:
Site to Site: You need to setup
remote gateway IP and subnet of
both gateways. After the IPSec
tunnel established, hosts behind
both gateways can communication
each other through the tunnel.