Research of Cooperation of IPSec and Firewall
Source: Academy Publisher
IPSec provides security services at the IP layer and ensures the packets transmitted safely in Internet by authenticating and encrypting. As IPSec encapsulates some important information of packets, it can not cooperate efficiently with packets filter firewall, which filters packets according to protocol and port. For the cooperation question of IPSec and firewall, this paper proposes the solution that handles security problems on protocol head and datagram separately, combines this layered approach with the key agreement way, and lets the firewall involved in the key agreement phase of IPSec, make the encrypted data packets pass, thus solving the compatibility operation problem.