An introduction to designing and configuring Cisco IPsec VPNs

• Understand the basics of the IPsec protocol and learn implementation best practices

• Study up-to-date IPsec design, incorporating current Cisco innovations in the security and VPN marketplace

• Learn how to avoid common pitfalls related to IPsec deployment

• Reinforce theory with case studies, configuration examples showing how IPsec maps to real-world solutions

IPsec Virtual Private Network Fundamentals provides a basic working knowledge of IPsec on various Cisco routing and switching platforms. It provides the foundation necessary to understand the different components of Cisco IPsec implementation and how it can be successfully implemented in a variety of network topologies and markets (service provider, enterprise, financial, government). This book views IPsec as an emerging requirement in most major vertical markets, explaining the need for increased information authentication, confidentiality, and non-repudiation for secure transmission of confidential data. The book is written using a layered approach, starting with basic explanations of why IPsec was developed and the types of organizations relying on IPsec to secure data transmissions. It then outlines the basic IPsec/ISAKMP fundamentals that were developed to meet demand for secure data transmission. The book covers the design and implementation of IPsec VPN architectures using an array of Cisco products, starting with basic concepts and proceeding to more advanced topics including high availability solutions and public key infrastructure (PKI). Sample topology diagrams and configuration examples are provided in each chapter to reinforce the fundamentals expressed in text and to assist readers in translating concepts into practical deployment scenarios. Additionally, comprehensive case studies are incorporated throughout to map topics to real-world solutions.

Amazon.com® Reader Reviews (Ranked by Helpfulness)

Average Amazon.com® Rating:  Based on 2 Ratings

mostly about IPsec - 2006-07-27
Reviewer Rating:
Ostensibly, this book is about both the general topic of Virtual Private Networks and Cisco's IPsec. In reality, it is mostly about the latter. (The book is from Cisco Press, isn't it?)

The explanations of VPN are quite well done, to be sure. Applicable to any vendor's VPN offerings, not just Cisco's. But it is how IPsec works that constitutes most of the text. En route, there are also nice discussions of the underlying cryptographic processes. No maths is presented. Just qualitative explanations of various public key encryption methods. If you are a sysadmin, you should already be familiar with much of this PKI material. Cisco has clearly sweated out the details of some heavy duty cryptographic processes, to ensure the privacy of the IPsec VPNs.

The book also exposes you to some low level IP packet formatting issues. The idea of a VPN tunnel rests on these foundations, of encapsulating messages at one end of the tunnel, and being able to unwrap them at the other end.

I get the feeling that the typical sysadmin who deploys IPsec between her 2 networks that need a VPN, won't actually need to know much of the cryptographic discussion in the book. Perhaps to make some initial configuration decisions. But on a day-to-day basis, once IPsec is set up, maintenance seems minimal. Which suggests good design by Cisco.

A Lot of Information with a Slight Cisco Emphasis - 2006-08-04
Reviewer Rating:
The introduction to this book clearly states that it is intended for engineers, consultants, administrators and others who have an interest in securing their networks with Cisco routers and VPN products. After all, the book is published by Cisco Press. This is not a bad idea, Cisco makes an awful lot of the equipment used in this area, but it may be something you want to consider if you are using competitive equipment.

Within this limitation, however, the book gives an excellent introduction to the problem and the solutions. There is an awful lot of background information that while sometimes tending to make your eyes close by themselves, gives you the background you really need to know when you are having a problem in a particular area.

The depth given in this book is far beyond the 'type this in' approach given in a lot of books. It is an excellent source of the information needed for a clear understanding of the problems and solutions. Highly Recommended to anyone getting involved with communications security.

Browse Similar Topics

Top Level Categories:
Networking

Sub-Categories:
Networking > VPN