Discuss some of the problems NATs create for IPsec security. Can we solve these problems by using IPv6? Why deployment of IPv6 has been slow to date. What is needed to accelerate its deployment?© BrainMass Inc. brainmass.com August 17, 2018, 8:17 pm ad1c9bdddf
Discuss some of the problems NATs create for IPsec security. Can we solve these problems by using IPv6? Why deployment of IPv6 has been slow to date. What is needed to accelerate its deployment?
Before discussing the problems that NATs create for IPsec Security, I would like to mention a few details regarding NAT and IPsec. NAT or Network Address Translation allows globally registered IP addresses to be re-used or shared by several hosts (Phifer, 2000). NAT uses the rarely used source ports to accumulate supplementary information on the local computer that sends a packet.
IPsec is normally the generally ideal for VPN tunneling over the internet (Nist.gov, 2005). There are two basic protocols defined in IPsec, the primary being the Encapsulating Security Payload (ESP) and the other is the Authentication Header (AH). NAT has issues with both these protocols. Firstly if we consider Authentication Header (AH), NAT traversal itself would question the validity and useful ness of Authentication Header, as the source address of the machine is totally hidden, as I mentioned earlier in the discussion about NAT. There are also similar problems associated with the ...
This solution explores some of the problems that NATs create for IPsec security, and how these problems can be resolved in IPv6. This solution also deals with the steps needed to be taken to accelerate the deployment of IPv6.