A network administrator would like to configure a site-to-site VPN utilizing IPSec. The administrator wants the tunnel to be established with data integrity, encryption, authentication, and anti-replay functions. Which of the following should the administrator use when configuring the VPN?
To configure a site-to-site VPN utilizing IPSec with data integrity, encryption, authentication, and anti-replay functions, the correct choice is ESP (Encapsulating Security Payload). ESP provides all these capabilities: it encrypts the data for confidentiality, offers authentication to verify the data source, ensures data integrity, and includes anti-replay protection to prevent unauthorized retransmission of packets. Other options like AH, EDR, and DNSSEC do not fulfill all these requirements.
A. AH (Authentication Header) provides authentication and data integrity but does not offer encryption or anti-replay protection. It does not encrypt the payload. B. EDR (Endpoint Detection and Response) is a security technology used for detecting and responding to advanced threats and breaches on endpoints (computers and servers). It's not related to configuring VPNs. C. ESP (Encapsulating Security Payload) is the correct choice for a site-to-site VPN when you need encryption, authentication, data integrity, and anti-replay protection. D. DNSSEC (Domain Name System Security Extensions) is used to add security to the DNS by providing authentication and data integrity for DNS data. It's not directly related to configuring VPNs with the specified requirements.
Here are my Two Cents: VPN works on Layer 3. The only choice that runs on Layer 3 is Option C. ESP.
IPsec includes Encapsulating Security Payload (ESP) to encrypt the data and provide confidentiality. ESP includes AH so it provides confidentiality, authentication, and integrity. -Security+ SY0-601 Get Certified Get Ahead by Darril Gibson
C is correct: Encapsulating Security Payload (ESP) is a member of the Internet Protocol Security (IPsec) set of protocols that encrypt and authenticate the packets of data between computers using a Virtual Private Network (VPN). The focus and layer on which ESP operates makes it possible for VPNs to function securely.
ESP is the Encapsulating Security Payload protocol in IPSec. It provides data confidentiality, connectionless data integrity, data origin authentication, an anti-replay service (a form of partial sequence integrity), and limited traffic-flow confidentiality.
for sure C
I too picked ESP but im conflicted about the ani-replay requirement. I know AH provides ani-replay not ESP. right?
Answer is C Advantages of ESP: Below listed are the advantages of Encapsulating Security Payload: Encrypting data to provide security Maintaining a secure gateway for data/ message transmission Properly authenticating the origin of data Providing needed data integrity Maintaining data confidentiality Helping with antireplay service using authentication header