Transport Mode

• When security is not enabled, TCP and UDP packets flow directly into the network layer

• When security in transport layer is enabled, packets

  • gets the AH, ESP or both header at the IPSec component of the network layer (if integrated with OS),
  • then adds the network layer header

• When both AH and ESP are used: ESP is applied first

IP

ESP

AH

TCP

data

IP

AH

ESP

TCP

data

Previous slide

Next slide

Back to first slide

View graphic version