Mspress Ipsec

MikdillyMikdilly Member Posts: 309
in MCSA/MCSE: Security
Review question:

Which mode would you use to protect communications between an Ipsec-enabled e-mail client and an email server on a private network?

a. Transport mode
b. Tunnel mode
· Share on FacebookShare on Twitter

Comments

  • PsoasmanPsoasman Member Posts: 2,687 ■■■■■■■■■□
    Probably tunnel mode, which protects the entire packet on its way through the entire network, as transport would be between 2 hosts on the network.
    · Share on FacebookShare on Twitter
  • dynamikdynamik Banned Posts: 12,312 ■■■■■■■■■□
    Transport. You'd use tunnel for things like connecting two sites across a WAN.

    Edit: Psoasman, it sounds like both of those reside on the same LAN.
    · Share on FacebookShare on Twitter
  • PsoasmanPsoasman Member Posts: 2,687 ■■■■■■■■■□
    ...oh duh icon_wink.gif I missed that part.
    · Share on FacebookShare on Twitter
  • MikdillyMikdilly Member Posts: 309
    dynamik wrote: »
    Transport. You'd use tunnel for things like connecting two sites across a WAN.

    Edit: Psoasman, it sounds like both of those reside on the same LAN.


    Technically, wouldn't it be neither as the question doesn't specify that the email server is ipsec enabled? Or if the the server isn't ipsec enabled, it would have to be be tunnel mode as the server would not be on the same network as the client and the secured traffic would have to be between the client and an ipsec gateway on the private network containing the email server?
    · Share on FacebookShare on Twitter
  • dynamikdynamik Banned Posts: 12,312 ■■■■■■■■■□
    I guess it depends on how you read the question. The important thing to take away is that you'd want to use transport if hosts are communicating with each other and tunnel if you're connecting different networks.
    · Share on FacebookShare on Twitter
Sign In or Register to comment.