F
F
FloorZ2016-01-15 04:52:45
VPN
FloorZ, 2016-01-15 04:52:45

What is the difference between encryption approaches in l2tp ipsec on mikrotik?

There is a screenshot below.
299ac35b180240dcb9ba0a04fa4db18c.png
Experimenting and understanding with ipsec and tunnels, such a thing turned out (I know very little about the principle of operation of l2tp and ipsec).
First - This encryption goes inside the l2tp tunnel, between the points of all traffic.
The second is the encryption of udp l2tp traffic, inside of which our tunnel is.
In both cases, if I'm not mistaken, the login / password of l2tp itself is transmitted encrypted mschap2
If anyone can explain. What is the main difference between these approaches? In terms of performance and security. After all, it is encrypted anyway (or you can probably simultaneously encrypt udp traffic on top and encrypt the data inside the tunnel).
Although in the first case, they will not exchange SA until traffic inside the tunnel comes from someone.

Answer the question

In order to leave comments, you need to log in

1 answer(s)
C
Cool Admin, 2016-01-15
@FloorZ

It is not very clear what we are talking about, if we are talking about the difference between the tunnel and transport modes, then they do not differ much in the encryption method or in security, but they differ strikingly in the convenience of building a network and in reliability in different conditions.

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question