Question:
What is a characteristic of the IPsec Encapsulation Security Payload protocol?
- functions only in transport mode
- does not encrypt the original payload of the packet
- provides data confidentiality, integrity, and authentication
- uses protocol number 51 located in the IP header
Explanation: IPsec uses two protocols to provide data integrity and confidentiality, the IP Authentication Header (AH) and the Encapsulating Security Payload (ESP). AH, which uses IP protocol number 51, provides integrity and authentication but does not provide encryption. ESP provides data confidentiality, integrity, and authentication. ESP ensures confidentiality by encrypting the payload and adding a new set of headers during transport across a public network.
Exam with this question: CCNP Enterprise: Advanced Routing (Version 8.0) – VPNs Exam
Please login or Register to submit your answer