IPset Network Segmentation Virtual Tunnel Interface (VTI) Encapsulating Security Payload (ESP) Network Address Translation (NAT) Source/Destination Check Subnet TLS Cipher Suite VPC 3DES Advanced Encryption Standard Autonomous System Border Gateway Protocol CIDR Clientpack Destination NAT Diffie-Helman Encryption Internet Key Exchange (IKE) IP Forwarding Maximum Transmission Unit (MTU) Network Sniffer OpenVPN Overlay Network Perfect Forward Secrecy (PFS) Security Association (SA) SHA SNMP Transmission Control Protocol (TCP) Transport Layer Security (TLS) User Datagram Protocol (UDP) VNS3 Peer VNS3 Routing Agent Wireguard Workforce Service Edge x509 Certificate Ipsec

Encapsulating Security Payload (ESP)

ESP is a member of the IPsec protocol suite and provides origin authenticity through source authentication, data integrity with hash functions and confidentiality through encryption protection for IP packets. ESP operates directly on top of IP, using IP protocol number 5.

Authentication Headers (AH) can be used in place of ESP. However, AH protocol provides a mechanism for authentication only. ESP provides data confidentiality (encryption) and authentication (data integrity, data origin authentication, and replay protection).