D-Link DFL-100 User Guide
35
Advanced Settings
IPSec
IPSec (Internet Protocol Security) is a group of protocols designed to allow
flexible, secure and interoperable communication over the Internet. IPSec is
used to establish an encrypted
−
and therefore, secure
−
connection between
two points on a network.
IPSec provides access control, connectionless data integrity, data origin
authentication, protection against replay attacks and confidentiality for each
IPSec packet. This is achieved by using headers and trailers on each packet,
which provide core pieces of information pertaining to authentication, data
integrity, and confidentiality. The AH (Authentication Header) addresses
data origin authentication, data integrity, and replay protection. The ESP
(Encapsulating Security Payload) header addresses the same features and also
includes data confidentiality or encryption capabilities. By default, IPSec
uses the AH as a minimum level for its capabilities. If data confidentiality is
desired, the AH is replaced with an ESP header for the encryption feature and
the authentication and data integrity components that the AH offer as well.
IPSec provides access control, connectionless data integrity, data origin
authentication, protection against replay attacks and confidentiality for each
IPSec packet. This is achieved by using headers and trailers on each packet,
which provide core pieces of information pertaining to authentication, data
integrity, and confidentiality. The AH (Authentication Header) addresses
data origin authentication, data integrity, and replay protection. The ESP
(Encapsulating Security Payload) header addresses the same features and also
includes data confidentiality or encryption capabilities. By default, IPSec
uses the AH as a minimum level for its capabilities. If data confidentiality is
desired, the AH is replaced with an ESP header for the encryption feature and
the authentication and data integrity components that the AH offer as well.