8ce19de7   
   From: pk@pk.invalid   
      
   On Wednesday 8 April 2009 05:21, lancer6238@yahoo.com wrote:   
      
   > Hi,   
   >   
   > I would like to know the format (i.e. the different protocol layers)   
   > of a complete VPN packet using IPsec and SSL running over TCP or UDP.   
   >   
   > For IPsec in tunnel mode, is it   
   >   
   > IP -> UDP/TCP -> IP -> ESP   
   >   
   > where the IP in IP -> ESP contains the IP address of the tunnel   
   > endpoints, and ESP encapsulates the encrypted original IP data packet?   
      
   No, it is   
      
   payload -> tcp/udp -> ip -> esp -> ip   
      
   the last esp+ip encapsulate the whole original ip packet.   
      
   > For SSL, is it   
   >   
   > IP -> TCP -> SSL -> Encrypted original IP packet?   
      
   I don't think there is a standard for that. If you mean https, that is   
      
   http -> ssl -> tcp -> ip   
      
   although there's no "ssl header" in the final packet, just encrypted http   
   data transported by tcp.   
      
   --- SoupGate-Win32 v1.05   
    * Origin: you cannot sedate... all the things you hate (1:229/2)