Full form: Internet Protocol Security
Also known as: Internet Protocol Security
Quick Definition
A suite of protocols providing authentication and encryption for IP traffic.
IPsec is a suite of protocols that secures IP communications through authentication and encryption at the network layer (Layer 3). IPsec components: IKE (Internet Key Exchange) negotiates security associations and keys, AH (Authentication Header) provides authentication, ESP (Encapsulating Security Payload) provides authentication + encryption. IPsec operates in Transport mode (protects payload only) or Tunnel mode (protects entire original packet — used for VPNs).
ESP provides both authentication and encryption. AH provides authentication only (no encryption). For VPN security, ESP in Tunnel mode is the standard choice. IKEv2 is more efficient than IKEv1.
IPsec is a suite of protocols that secures IP communications through authentication and encryption at the network layer (Layer 3). IPsec components: IKE (Internet Key Exchange) negotiates security associations and keys, AH (Authentication Header) provides authentication, ESP (Encapsulating Security Payload) provides authentication + encryption. IPsec operates in Transport mode (protects payload only) or Tunnel mode (protects entire original packet — used for VPNs).
ESP provides both authentication and encryption. AH provides authentication only (no encryption). For VPN security, ESP in Tunnel mode is the standard choice. IKEv2 is more efficient than IKEv1.
IPsec falls under the WAN domain of the 200-301 exam. Understanding it in context with related terms like vpn and site-to-site-vpn is essential for answering scenario-based questions correctly.