So the setup is a GRE tunnel protected by IPsec using ESP. Under the IPsec transform-set is where I can set the mode to either transport or tunnel. While testing both modes and capturing traffic via Wireshark, I didn't see any difference. I tested by pinging from R1's loopback to R2's loopback.
I thought I understood the general theory and that Tunnel mode was more secure. Also, they say that the Tunnel mode adds at least an additional 20 bytes to the packets, but I didn't see a difference there either.
What am I missing here?
No comments:
Post a Comment