Greetings!
mouss schrieb:
> At 14:48 22/03/01 +0800, [EMAIL PROTECTED] wrote:
> >I am a new starter in firewall/VPN. I am confused with two terms - Tunnel
> >Mode and Transport Mode.
> >Does anyone can tell me the difference btw them and some examples for
> >their application
>
> Typically, Tunnel mode is used by gateways, while transport mode is used by
> hosts. Again typically, your FW/VPN will use tunnel mode for packets that it
> relays on behalf of other clients, and use transport mode for those generated by
> the FW/VPN itself.
In "Tunnel Mode" the whole IP packet is being encrypted and becomes the data part
of a new IP packet with new header information (from/to src/dst). With this noone
can read from or to where the real packet is being sent or its contents.
In "Transport Mode" only the data portion of the IP packets get encrypted, the
header stays the same. Here anyone sees which two computers are communicating - and
probably with which protocol (from the port number).
Bye
Volker
--
Volker Tanger <[EMAIL PROTECTED]>
Wrangelstr. 100, 10997 Berlin, Germany
DiSCON GmbH - Internet Solutions
http://www.discon.de/
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
