At 05:10 30/04/97 -0500, Sandeep Kumar Talwar wrote:
>
>Ip tunnelling is encapsulating IP packets or some other protocol packets
>such as IPX etc.Is this right?
>Then when two firewalls talk to each other we say that an IP-tunnel has
>been established.Is this also correct?
If the firewalls are forwarding data between their internal
networks in a system like IPsec ESP tunnel mode, that's a true
tunnel because the IP addresses in the IP datagrams sent on
the Internet are those of the firewalls.
Of course, firewalls can also pass traffic without any tunnel: the IP
addresses in the IP headers are not changed.
>Where actually does IP-tunnelling take place.Is it the router.
Usually in the firewall (to provide confidentiality),
or in router (usually to pass non IP traffic on an IP network
like Internet).
With IPsec, host (PC, Unix, ...) can also send data in some
kind of tunnels for confidentiality.
>Can we have IP-Tunnelling other than with the help of Firewall.I heard
>about Ioannidis swipe protocol.
>Any advise on my queries would be greatly appreciated.
>Thanks in advance.
>Regards....Sandeep
>
Eric Vyncke Internet, security consultant
Cisco Systems Belgium SA/NV /------------------------------------\
Phone: +32-2-778.4677 | Networks bring |
Fax: +32-2-778.4300 | people |
E-mail: evyncke @
cisco .
com | together... |
Mobile: +32-75-312.458 \------------------------------------/
|
|
