HP-UX IPSec version A.02.00 Administrator's Guide
HP-UX IPSec Overview
HP-UX IPSec Topologies
Chapter 1 43
HP-UX IPSec Topologies
IPSec can be employed between hosts (that is, end nodes), between
gateways, or between a host and a gateway in an IP network. HP-UX
IPSec can only be installed on end nodes.
Installing HP-UX IPSec on an HP-UX system that is a router or gateway
is not supported, except when the system is used as an HP-UX Mobile
IPv6 Home Agent. See Chapter 7, “HP-UX IPSec and HP-UX Mobile
IPv6,” on page 199 for more information.
Host-to-Host Topology
Two end hosts can run HP-UX IPSec locally to protect communication
between them, with or without intermediate gateways.
Figure 1-11 IPSec Host-to-Host Topology
Host-to-Gateway Topology
In situations where the local subnet is a trusted network, you can use
HP-UX IPSec between an end host and a gateway and create a secure
Virtual Private Network (VPN).
Figure 1-12 Host-to-Gateway (VPN) Topology
Secure channel
Internet
HostA
HostB
HP-UX IPSec
HP-UX IPSec