Skip to main content
IBM 
ShopSupportDownloads
IBM HomeProductsConsultingIndustriesNewsAbout IBM
IBM : developerWorks : Security : Education - online courses
Virtual private networks, Part 2		Download tutorial zip fileView letter-sized PDF fileView A4-sized PDF fileE-mail this tutorial to a friend
Main menuSection menuGive feedback on this tutorialNext
2. Authentication Header (AH) considerations
  


AH use in transport mode page 1 of 3


In this mode, the original IP datagram is taken and the AH header is inserted right after the IP header. If the datagram already has an IPSec header, then the AH header is inserted before any of those.

Transport mode is used by hosts, not by gateways. In fact, gateways are not required to support transport mode.

The advantage of the transport mode is it requires less processing overhead. The disadvantage is that the mutable fields are not authenticated.

Figure 1
Transport mode


Main menuSection menuGive feedback on this tutorialNext
PrivacyLegalContact