|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
ssh tunnels vs. ipsec tunnels
From: Paolo Supino (vrkid0
gmail.com)
Date: Mon Feb 07 2005 - 05:55:26 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Hi
This isn't an OpenBSD specific question and I apologize, but I was
asked what are the pros and cons of using ssh tunnels in contrast of
ipsec tunnels? Except for the obvious things: ssh is layer 7 and ipsec
is layer 3. ssh only tunnels tcp while ipsec tunnels everything at its
entry point. ipsec is transparent to the layers above while ssh isn't.
ssh has less overhead while ipsec has a higher overhead. But what
about authentication/vulnerability of the protocol to attacks? Load on
the OS? Authentication options? Configuration (and especially how easy
is to misconfiguration it to create a weak point)? Any other thing I
didn't think of?
TIA
Paolo
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]