IPsec VPNs

GPTKB entity

Statements (50)
Predicate Object
gptkbp:instanceOf Virtual Private Network
gptkbp:alternativeTo SSL VPNs
gptkbp:auditedBy security tools
gptkbp:canBe gptkb:IPv4
gptkb:IPv6
digital certificates
pre-shared keys
various authentication methods
various encryption algorithms
gptkbp:canBeBypassedBy NAT with NAT-T
gptkbp:canBeImplementedOn firewalls
routers
end-user devices
gptkbp:canBeManagedBy centralized management systems
gptkbp:combines gptkb:MPLS
gptkb:GRE_tunnels
gptkbp:definedIn gptkb:RFC_4301
https://www.w3.org/2000/01/rdf-schema#label IPsec VPNs
gptkbp:monitors network monitoring systems
gptkbp:operatesIn Network layer
gptkbp:provides authentication
data integrity
data encryption
secure communication
gptkbp:requires mutual authentication
gptkbp:standardizedBy gptkb:IETF
gptkbp:subject export controls in some countries
gptkbp:supportedBy gptkb:Windows
gptkb:macOS
gptkb:Linux
many network appliances
gptkbp:supports remote access VPN
site-to-site VPN
transport mode
tunnel mode
gptkbp:supportsProtocol gptkb:IPsec
gptkbp:usedBy enterprises
service providers
gptkbp:usedFor remote worker access
secure site interconnection
gptkbp:usedIn corporate networks
cloud connectivity
government networks
gptkbp:uses gptkb:IKE
gptkb:ESP
AH
gptkbp:vulnerableTo key exchange attacks if misconfigured
gptkbp:bfsParent gptkb:BGP/MPLS_VPNs
gptkb:MPLS_networks
gptkbp:bfsLayer 7