IP Security - Virtual Private Network
Left running head:
Chapter name (automatic)
744
Beta
Beta
CLI Configuration Guide
Alcatel-Lucent
IP
SEC
P
ROTOCOLS
The IPsec protocol suite consists of two protocols:
•
“Authentication Header (AH)”
•
“Encapsulating Security Payload (ESP)”
A
UTHENTICATION
H
EADER
(AH)
An
Authentication Header (AH)
for an IP permits communicating parties to verify
that data was not modified in transit and that it was genuinely transmitted from the
apparent source.
This protocol provides a means to verify the authenticity/integrity of the content
and origin of a packet. A packet can be authenticated by the checksum calculated
via hash-based message authentication code (HMAC) using a secret key and
either MD-5 or SHA-1 hash functions.
•
Message Digest version 5 (MD5)
- An algorithm that produces a 128-bit hash
(also called a digital signature or message digest) from a message of arbitrary
length and a 16-byte key. The resulting hash is used, like a fingerprint of the
input, to verify content and source authenticity and integrity.
•
Secure Hash Algorithm-1 (SHA-1) -
An algorithm that produces a 160-bit hash
from a message of arbitrary length and a 20-byte key. It is generally regarded as
more secure than MD5 because of the larger hashes it produces.
E
NCAPSULATING
S
ECURITY
P
AYLOAD
(ESP)
An
Encapsulation Security Payload (ESP)
format for IP is applied to encrypt the
data. This provides for enhanced security of the data packet and protects it
against eavesdropping during transit.
The ESP protocol provides a means to ensure privacy (encryption), source
authentication, and content integrity (authentication). In tunnel mode it
encapsulates the entire IP packet (header and payload), and then appends a new
IP header to the now encrypted packet. This new IP header contains the
destination address needed to route the protected data through the network.
Note:
The OA-700 supports the ESP protocol, which also provides AH functionality.
Содержание OmniAccess 700
Страница 38: ...Left running head Chapter name automatic 12 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Страница 176: ...Left running head Chapter name automatic 150 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Страница 224: ...Per VLAN Spanning Tree Left running head Chapter name automatic 198 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Страница 258: ...Port Monitoring Left running head Chapter name automatic 232 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Страница 260: ...Left running head Chapter name automatic 234 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Страница 296: ...T1E1 Line Card Left running head Chapter name automatic 270 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Страница 360: ...Point to Point Protocol Left running head Chapter name automatic 334 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Страница 434: ...Left running head Chapter name automatic 408 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Страница 462: ...Common Classifiers Left running head Chapter name automatic 436 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Страница 464: ...Left running head Chapter name automatic 438 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Страница 534: ...Border Gateway Protocol Left running head Chapter name automatic 508 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Страница 638: ...Left running head Chapter name automatic 612 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Страница 762: ...Filter and Firewall Left running head Chapter name automatic 736 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Страница 890: ...Transparent Firewall Left running head Chapter name automatic 864 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Страница 940: ...Left running head Chapter name automatic 914 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Страница 1000: ...Quality of Service Left running head Chapter name automatic 974 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Страница 1002: ...Left running head Chapter name automatic 976 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Страница 1044: ...DNS Domain Name Service Client Left running head Chapter name automatic 1018 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Страница 1046: ...Left running head Chapter name automatic 1020 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Страница 1058: ...Left running head Chapter name automatic 1032 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Страница 1074: ...Lifeline Left running head Chapter name automatic 1048 Beta Beta CLI Configuration Guide Alcatel Lucent line con 0 end ...
Страница 1076: ...Left running head Chapter name automatic 1050 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Страница 1118: ...Web Cache Server Left running head Chapter name automatic 1092 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Страница 1120: ...Left running head Chapter name automatic 2 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Страница 1140: ...QoS Values and Mnemonics Left running head Chapter name automatic 22 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Страница 1156: ...IPsec Interoperability of OA 700 Left running head Chapter name automatic 38 Beta Beta CLI Configuration Guide Alcatel Lucent ...