1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

came back with some questions

Discussion in 'Networks' started by kobem, Apr 7, 2008.

  1. kobem

    kobem Megabyte Poster

    791
    1
    50
    hey i still work on my thesis and this time i determined mobile IPv6. I have some questions
    other than these:

    1- Perhaps this is a dumb one, though i wanna ask a question first you have never heard.
    you know "the data encapsulation process". By doing this , can't we hide the information(data and control info)in packet from outer threats?

    And so , why do we "also" use IPSec protocol to
    hide the information if data encapsulation process already perform that?


    2- There are two things: IPv4 Options and IPv6 Extension headers
    IPv4 Options removed since it was infrequently used. Then it has been moved to extension headers.

    Now let's come to question,
    IPv4 Options would provide us some security, also IPv4 protocol field do this by adding
    AH header and ESP header if IPSec is implemented.

    So, wasn't "AH header and ESP header" enough to provide IPSec features? why also
    use some information " in IPv4 Options? "
     
    Certifications: CCNA
  2. Fergal1982

    Fergal1982 Petabyte Poster

    4,196
    171
    211
    Certifications: ITIL Foundation; MCTS: Visual Studio Team Foundation Server 2010, Administration
    WIP: None at present
  3. kobem

    kobem Megabyte Poster

    791
    1
    50
    Certifications: CCNA
  4. AJ

    AJ Administrator Administrator

    6,771
    102
    221
    Duplicate thread removed
     
    Certifications: MCSE, MCSA (messaging), ITIL Foundation v3
    WIP: Looking at doing ..................
  5. hbroomhall

    hbroomhall Petabyte Poster Gold Member

    6,623
    115
    224
    If data is encapsulated it can still be read, using something like Wireshark.
    Because IPSec can *encrypt* the data. If you capture the packet you still can't read it. And IPSec also authenticates the source of the packet.

    I think you are confusing IPv4 Options with IPv4 Type of Service. It was TOS that was unused and re-engineered.
    IPv4 Options don't provide any security - why do you think they do?
    Options don't provide any encryption or authentication, which is why IPSec exists.

    Harry.
     
    Certifications: ECDL A+ Network+ i-Net+
    WIP: Server+
  6. kobem

    kobem Megabyte Poster

    791
    1
    50
    got others hbroomhall

    but for this, i say

    ************
    Originally Posted by kobem View Post
    Now let's come to question,
    IPv4 Options would provide us some security,


    IPv4 Options don't provide any security - why do you think they do?

    *********
    i have read somewhere that IPv4 options could be used to carry information related to encryption
    so i told this.
     
    Certifications: CCNA
  7. hbroomhall

    hbroomhall Petabyte Poster Gold Member

    6,623
    115
    224
    So the thing would be to dig out where this 'somewhere' was and review it!

    Harry.
     
    Certifications: ECDL A+ Network+ i-Net+
    WIP: Server+

Share This Page

Loading...