Security Basics mailing list archives
RE: IPSec vs. IPSec/L2TP
From: "Mark Lewis" <mark () mjlnet com>
Date: Sat, 9 Apr 2005 00:22:19 +0100
Oh, and by the way, L2TP/IPsec doesn't enhance security beyond regular IPsec. If you take a look at RFC 3193 (http://www.ietf.org/rfc/rfc3193.txt?number=3193), you'll see that the IPsec can be used to enhance the security of L2TP, rather than the other way around. So, if security is the 'only' concern then continue to use just plain old IPsec. But if you want to transport IP/non-IP protocols securely, then you might like to take a look at L2TP/IPsec. HTH, Mark CCIE#6280 / CCSI#21051 / JNCIS/ etc. Author: http://www.amazon.com/exec/obidos/tg/detail/-/1587051044/
-----Original Message----- From: Bénoni MARTIN [mailto:Benoni.MARTIN () libertis ga] Sent: 08 April 2005 13:55 To: security-basics () securityfocus com Subject: IPSec vs. IPSec/L2TP Hi list, I was wondering how much the security is enhanced by using L2TP/IPSec tunnelling instead of a good old IPSec tunnel. I found a lot of information googling around the web, but couldn't find a good paper explainig this enhancement (or not). If anyone cound give me any hint, personnal experience feedback or URL, this will be appreciated ! Thx ! ------------------------------------------------------------------ --------- Earn your MS in Information Security ONLINE Organizations worldwide are in need of highly qualified information security professionals. Norwich University is fulfilling this demand with its MS in Information Security offered online. Recognized by the NSA as an academically excellent program, NU offers you the opportunity to earn your degree without disrupting your home or work life. http://www.msia.norwich.edu/secfocus_en ------------------------------------------------------------------ ----------
--------------------------------------------------------------------------- Earn your MS in Information Security ONLINE Organizations worldwide are in need of highly qualified information security professionals. Norwich University is fulfilling this demand with its MS in Information Security offered online. Recognized by the NSA as an academically excellent program, NU offers you the opportunity to earn your degree without disrupting your home or work life. http://www.msia.norwich.edu/secfocus_en ----------------------------------------------------------------------------
Current thread:
- IPSec vs. IPSec/L2TP Bénoni MARTIN (Apr 08)
- RE: IPSec vs. IPSec/L2TP Mark Lewis (Apr 09)
- RE: IPSec vs. IPSec/L2TP Mark Lewis (Apr 09)
- Re: IPSec vs. IPSec/L2TP Rodrigo Blanco (Apr 09)
- <Possible follow-ups>
- RE: IPSec vs. IPSec/L2TP Ghaith Nasrawi (Apr 11)
- RE: IPSec vs. IPSec/L2TP Mark Lewis (Apr 12)