Tunnel mode provides the protection of an entire IP packet by treating it as an AH or ESP payload. With tunnel mode, an entire IP packet is encapsulated with an AH or ESP header and an additional IP header.
Before deploying IPSec in your organization, consider the following security issues: 3DES and computers running Windows 2000 Authentication method Firewall packet filtering Protected traffic (using AH vs.
Windows XP provides a set of predefined IPSec filter lists and filter actions and default policies. This is only intended to provide an example. It is not designed for operational use without modification.
The IPv6 protocol for Windows includes the following features: 6to4 tunneling Intrasite Automatic Tunnel Addressing Protocol 6over4 tunneling Anonymous addresses Site prefixes in router advertisements DNS support IPSec support Application support ...
A filter action defines the security requirements for the data transmission. A filter action can be configured to: Permit traffic (Permit) IPSec passes this traffic to and from the TCP/IP driver without modification or the requirement for security.