Re: Can IPSec connect 2 VPN Clients or is ALWAYS an IPSec server needed ?

From: Richard E. Silverman (res_at_qoxp.net)
Date: 07/25/05

• Next message: Llanzlan Klazmon: "Re: Can IPSec connect 2 VPN Clients or is ALWAYS an IPSec server needed ?"
• Previous message: Peter Meister: "Can IPSec connect 2 VPN Clients or is ALWAYS an IPSec server needed ?"
• In reply to: Peter Meister: "Can IPSec connect 2 VPN Clients or is ALWAYS an IPSec server needed ?"
• Next in thread: Llanzlan Klazmon: "Re: Can IPSec connect 2 VPN Clients or is ALWAYS an IPSec server needed ?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: 25 Jul 2005 16:00:15 -0400

>>>>> "PM" == Peter Meister <pmeister2@lycos.com> writes:

    PM> As the subject already asked: Do I always need an IPSec server to
    PM> establish an IPsec connection or is something like an ad-hoc
    PM> (similar to WLAN) IP-sec connection between two clients possible?

Note this has nothing to do with SSH and does not belong in this
newsgroup.

IPSec itself is a symmetric protocol; there is no such thing as an "IPSec
server," and it allows two peer nodes to protect their communication in
either or both directions.

However, certain uses of IPSec may imply or require a client-server
relationship. Rather than protecting communication end-to-end, it is more
common these days to see IPSec used as part of a VPN setup, either
directly using tunnel mode, or indirectly using some kind of encapsulation
(e.g. L2TP). In this case, the remote node is a client of some sort of
communication server or gateway (e.g. a Cisco VPN Concentrator). In this
case, the VPN client software may be specialized and not useful for
peer-to-peer IPSec.

-- 
  Richard Silverman
  res@qoxp.net

• Next message: Llanzlan Klazmon: "Re: Can IPSec connect 2 VPN Clients or is ALWAYS an IPSec server needed ?"
• Previous message: Peter Meister: "Can IPSec connect 2 VPN Clients or is ALWAYS an IPSec server needed ?"
• In reply to: Peter Meister: "Can IPSec connect 2 VPN Clients or is ALWAYS an IPSec server needed ?"
• Next in thread: Llanzlan Klazmon: "Re: Can IPSec connect 2 VPN Clients or is ALWAYS an IPSec server needed ?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: VPN problems ... If you are using the IPSec protocol, you need to know that IPSec cannot handle NAT. ... We are attempting to set up the ZyWALL to test the VPNs ... compatibility with the Windows VPN client inbuilt with XP Pro. ... (Security-Basics) Re: VPN problems and Linksys BEFSR411???? ... that we successfully use Nortel client software to connect to a Nortel ... Contivity switch using IPsec VPN from behind a linksys BEFSR41. ... If you're using the VPN client that comes with Windows, ... (comp.security.firewalls) Re: VPN problems and Linksys BEFSR411???? ... that we successfully use Nortel client software to connect to a Nortel ... Contivity switch using IPsec VPN from behind a linksys BEFSR41. ... If you're using the VPN client that comes with Windows, ... (comp.security.firewalls) Re: LAN_A - VPN to VPN- LAN_B using Windows 2003 and PreSHared KEY ... you may want to create ipsec on ... this may help even it talks about client. ... > Company B have their own network LAN_B and have devices deployed on> our Network LAN_A, in order to service these devices remotely they> want to VPN into our site using a site - to site VPN. ... > They have said that the VPN at our lan, LAN_A must be setup to use> Pre-Shared KEY and not usernames and password, so just the pre shared> key to get on the VPN. ... (microsoft.public.win2000.ras_routing) RE: Microsoft IPSec via group policy ... IPsec could accomplish this. ... Microsoft IPSec via group policy ... Requiring ipsec between a client and a DC via GPO is problematic. ... (Security-Basics)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint