Chapter 10. Further Architectural Options for IPsec
Up until this point, we've discussed major deployments and best practice design fundamentals for IPsec VPN deployments. Situations may arise in which IPsec network architectures are forced ...
IPsec VPN Termination On-a-Stick
When referring to technologies "on-a-stick," we are typically describing a scenario in which the device performing that technical function is attached to the network using a single interface. Common examp...
In-Path Versus Out-of-Path Encryption with IPsec
Design options that place the IPsec VPN tunnel termination endpoints directly in the data path refer to in-path IPsec VPN tunnel terminations. Figure 10-3 illustrates in-path versus out-of-path IPse...
Separate Termination of IPsec and GRE (GRE-Offload)
In Chapter 3, "Basic IPsec VPN Topologies and Configurations," we introduced the need to encapsulate traffic to be included in the crypto switching path in generic routing encapsulation...
Summary
In this chapter, we've reviewed several architectural options, discussing the technical details of each and exploring their appropriateness in an IPsec VPN design. Some of the topics covered are more popular in today's networked environm...
С 2009 года мы стали переводить структура сайта на различные языки. Сайт теперь будет содержать книги не только на английском языке, но также и на других европейских языках, в том числе и на Русском языке.
