Ask Me Help Desk

Ask Me Help Desk (https://www.askmehelpdesk.com/forum.php)
-   Firewalls (https://www.askmehelpdesk.com/forumdisplay.php?f=473)
-   -   Why there is a need to be an extra IP header when sending an encrypted traffic (https://www.askmehelpdesk.com/showthread.php?t=73282)

  • Mar 18, 2007, 09:22 AM
    yashchopra
    Why there is a need to be an extra IP header when sending an encrypted traffic
    When sending an encrypted traffic from firewall to firewall, why does there a need to be an extra IP header? Why can’t the firewall simply encrypt the packet, leaving the source and destination as the original source and destination?
  • Oct 10, 2007, 09:33 PM
    tbakry
    Because the encrypted payload contains the need routing information for the clients. If all we wanted to do was encrypt traffic between two hosts, we would not need to have the extra header, but, since we are creating an encrypted tunnel, the decrypted payload needs to be able to be processed on the network at either end of the tunnel.

    Cheers,

    Tom

  • All times are GMT -7. The time now is 03:38 AM.