Manualshelf

HP-UX IPSec version A.02.01 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX IPSec Software
61626364656667686970
HP-UX IPSec Overview
HP-UX IPSec Topologies
Chapter 1 57
Host-to-Gateway VPN Across the Internet
You can also use IPsec to create a host-to-gateway VPN across the
Internet, as shown in Figure 1-16. The manufacturer’s IP router is an
IPsec gateway, and system A establishes the IPsec session with the
manufacturers router.
Figure 1-16 HP-UX IPSec Host-to-Gateway VPN Across the Internet
In this example, system A can easily access all systems in the
manufacturer’s network; therefore you must configure filtering on the
manufacturer’s firewall to check the traffic to and from system A and
allow only IPsec packets between system A and B to pass. In addition,
packets between the router and system B are not secured.
In the host-to-gateway VPN topology, HP-UX IPSec is used on system A.
The router uses an IPsec gateway product provided by another vendor.