{"id":399,"date":"2017-09-29T14:48:38","date_gmt":"2017-09-29T12:48:38","guid":{"rendered":"http:\/\/www.quisted.net\/?p=399"},"modified":"2017-09-29T14:48:38","modified_gmt":"2017-09-29T12:48:38","slug":"vpn","status":"publish","type":"post","link":"https:\/\/www.quisted.net\/index.php\/2017\/09\/29\/vpn\/","title":{"rendered":"VPN"},"content":{"rendered":"<ul>\n<li><strong>Virtual Private Network<\/strong>\n<ul>\n<li>Route exchange privacy<\/li>\n<li>Path determination for packets<\/li>\n<li>Data Security\n<ul>\n<li>IPSec IP security<\/li>\n<\/ul>\n<\/li>\n<li>Collection of standized protocols that provide\n<ul>\n<li><strong><span style=\"color: #339966;\"><em>Confidentiality<\/em><\/span><\/strong><\/li>\n<li><strong><span style=\"color: #339966;\"><em>Integrity<\/em><\/span><\/strong><\/li>\n<li><strong><span style=\"color: #339966;\"><em>Authentication<\/em><\/span><\/strong><\/li>\n<li><strong><span style=\"color: #339966;\"><em>Anti-Reply<\/em><\/span><\/strong><\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<p><!--more--><\/p>\n<h3>IPSec<\/h3>\n<ul>\n<li><strong><span style=\"color: #ff0000;\">SA<\/span><\/strong>, <em>Security Association<\/em><\/li>\n<li><strong><span style=\"color: #ff0000;\">IKE<\/span><\/strong>, <em>Internet Key Exchange<\/em>\n<ul>\n<li><span style=\"color: #3366ff;\">Phase 1<\/span>\n<ul>\n<li>ISAKMP session established<\/li>\n<li>ISAKMP Internet Security Association and Key Management Protocol<\/li>\n<li>Exchange of &#8220;Transform Sets&#8221;\u00a0 (IPSec protocols you support)<\/li>\n<\/ul>\n<\/li>\n<li><span style=\"color: #3366ff;\">Phase 2<\/span>\n<ul>\n<li>Happens inside protection of the IKE Phase-1 tunnel<\/li>\n<li>Creates unidirectional SA associations between tunnel endpoints<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<\/li>\n<li><span style=\"color: #ff0000;\"><strong>AH<\/strong><\/span>, <em>Authentication Header<\/em>\n<ul>\n<li>IP protocol #51<\/li>\n<\/ul>\n<\/li>\n<li><strong><span style=\"color: #ff0000;\">ESP<\/span><\/strong>, <em>Encapsulation Security Payload<\/em>\n<ul>\n<li>IP protocol #50<\/li>\n<\/ul>\n<\/li>\n<li>AH + ESP offer authentication and Integrity<\/li>\n<li>ESP offers encryption<\/li>\n<li>Tunnel mode\n<ul>\n<li>Gives a new IP header infront of the\u00a0 ESP\/AH header<\/li>\n<\/ul>\n<\/li>\n<li>Transport mode\n<ul>\n<li>Original header in maintained<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Virtual Private Network Route exchange privacy Path determination for packets Data Security IPSec IP security Collection of standized protocols that provide Confidentiality Integrity Authentication Anti-Reply<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"ngg_post_thumbnail":0,"footnotes":""},"categories":[8,11],"tags":[],"class_list":["post-399","post","type-post","status-publish","format-standard","hentry","category-route","category-various"],"_links":{"self":[{"href":"https:\/\/www.quisted.net\/index.php\/wp-json\/wp\/v2\/posts\/399","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.quisted.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.quisted.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.quisted.net\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.quisted.net\/index.php\/wp-json\/wp\/v2\/comments?post=399"}],"version-history":[{"count":0,"href":"https:\/\/www.quisted.net\/index.php\/wp-json\/wp\/v2\/posts\/399\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.quisted.net\/index.php\/wp-json\/wp\/v2\/media?parent=399"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.quisted.net\/index.php\/wp-json\/wp\/v2\/categories?post=399"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.quisted.net\/index.php\/wp-json\/wp\/v2\/tags?post=399"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}