abitrolly/ipsecnotes.md

Last active January 11, 2021 15:03

Star (0) You must be signed in to star a gist
Fork (0) You must be signed in to fork a gist

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/abitrolly/d07eab169c1d44f15b22cfbba551f1b3.js"></script>
Save abitrolly/d07eab169c1d44f15b22cfbba551f1b3 to your computer and use it in GitHub Desktop.

Download ZIP

IPSec

Raw

ipsecnotes.md

IPSec is just an encrypted IP packet
Meaning everything after IP header is encrypted
Well, there is also AH header between IP header and encrypted contents
The AH header specifies how the content is encrypted
If AH matches on client and receiver, the packet is passed to decryption
What happens when the packet is decrypted depends on packet handler on receiving side

https://libreswan.org/wiki/images/e/e0/Netdev-0x12-ipsec-flow.pdf

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment