Protocol) was developed at the National Security Agency and is the protocol used by
IPSec to manage keys.
ISAKMP reports to IKE.
maps at both peers.
including IPSec. VeriSign OnSite for IPSec lets organizations easily issue certificates and build
their own virtual private networks (VPNs) using the IPSec capabilities built into Cisco products.
algorithm, DES can turn clear-text messages into cipher text at the source. The destination
restores the cipher text back to data. Keys called shared secret keys enable this to happen.
VPNs enable the creation of private networks across the Internet, enabling tunneling and
privacy of non-TCP/IP protocols and saving money in the process. In some cases, TCP/IP is
tunneled as well.
dials into a local service provider for a popular online service. The user can access company
information over a virtual tunnel through the Internet, without fear of someone's intercepting
the data as it transits the unsecured Internet. The user could be using an IP-based workstation
or a Macintosh AppleTalk workstation because the AppleTalk traffic can be tunneled through
IP. Figure 15-17 shows an example of a VPN.