Two IPSec peers establish inbound and outbound SAs to form a secure IPSec tunnel through which data packets are transmitted securely over the Internet.
Table 1 lists IPSec configuration tasks.
Scenario |
Description |
Task |
|---|---|---|
Using an Efficient VPN policy to establish an IPSec tunnel |
Efficient VPN uses the client/server model. It concentrates IPSec and other configurations on the Efficient VPN server (headquarters gateway). When basic parameters for establishing SAs are configured on the remote devices (branch gateways), the remote devices initiate a negotiation and establish an IPSec tunnel with the server. After IPSec tunnels are established, the Efficient VPN server allocates other IPSec attributes and network resources to the remote devices. Efficient VPN simplifies configurations and maintenance of IPSec and network resources for branches. |