Avaya Configuring IPsec Services Manual de usuario descargar pdf (Pagina 23)

Overview of IPsec

308630-15.1 Rev 00

1-5

Additional IPsec Services

Within the IPsec framework, additional security services are provided. An access

control service ensures authorized use of the network, and an auditing service

tracks all actions and events.

IPsec services can be configured on an interface-by-interface basis. Up to

127 inbound and 127 outbound security policies (customized) are supported on

each IPsec interface.

How IPsec Works

IPsec services are bundled as an IP encryption packet. The packets resemble

ordinary IP packets to Internet routing nodes; only the sending and receiving

devices are involved in the encryption. IPsec packets are delivered over the

Internet like ordinary IP packets to branch offices, corporate partners, or other

remote organizations in a secure, encrypted, and private manner.

Several well-established technologies provide encryption and authentication at the

application layer. IPsec adds security at the underlying network layer, providing a

higher degree of security for all applications, including those without any security

features of their own.

IPsec Protection

To configure a router with IPsec, you first configure the router interface as an IP

interface. Then you add the IPsec software to the IP interface, creating a security

gateway. A security gateway is a router between a trusted network (for example,

the enterprise intranet) and an untrusted network (the Internet) that provides a

security service such as IPsec.

The router interface is secured with inbound and outbound security policies that

filter traffic to and from the router module. The data packets themselves are

protected by the IPsec processing specified by security associations (SAs).

1 2 ... 18 19 20 21 22 23 24 25 26 27 28 ... 121 122

Sin comentarios

Avaya Configuring IPsec Services Manual de usuario Pagina 23