Help
Technical Articles
F5 SMEs share good practice.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions

Sound Off: IPSec versus SSL for Cloud Bridging

Lori_MacVittie
F5 Employee
F5 Employee

on ‎17-Dec-2012 05:34

#opinionswanted #cloud #infosec

0151T000003d5WwQAI.jpg I asked this on Twitter as a general question after reviewing the results in the Completely Unscientific Hybrid Cloud Survey Results from Gartner DC 2012 and continued to wonder why IPSec VPN was specifically noted but SSL VPN was not. Certainly a VPN of some kind is a requirement, no argument there, but why IPSec? Why not SSL? Is there some bias against SSL or is it perhaps just that the presenter at the conference failed to offer it as an option?

Then I thought this is just one of many questions I'd like to hear more opinions on. Blogs are good for asking questions. Blogs are good at aggregating answers and opinions in one place. By golly, a blog is a good place to ask this question too!

So, without further adieu, your question for the week:

Why IPSec for cloud bridging? Is it just the default protocol folks think of when hearing the term VPN or do SSL VPNs lack some critical function required?

 

Sound off, share your opinion in a comment.

 0151T000003d5WCQAY.png0151T000003d5WDQAY.png0151T000003d5WEQAY.png0151T000003d5WFQAY.png0151T000003d5WGQAY.png0151T000003d5WHQAY.png

Labels:
0 Kudos
Comments
Lori_MacVittie
F5 Employee
F5 Employee
‎17-Dec-2012 05:45
Thus far we have some great response on Twitter from folks like Mike Fratto (@mfratto), David O'Berry (@davidoberry), Simon Crosby (@simoncrosby), David Mortman (@mortman) and Jack Daniel (@jack_daniel)

 

 

Some of the insights thus far:

 

 

- Smaller encapsulation

 

- IPsec deterministic, known overhead versus varaible

 

- IPSec VPN net-to-net shipping and widely available, SSPN VPN net-to-net not

 

- OpenVPN long available, choice of ports/protocols, more forgiving of latency

 

- Support and scalability

 

 

Looking forward to more insight on this one!

 

 

0 Kudos
Lori_MacVittie
F5 Employee
F5 Employee
‎17-Dec-2012 06:47
Christofer Hoff (@beaker) and Steve Shah (@steveshah) chiming in with interoperability and standardization as well as broader support as reasons for IPSec dominance over SSL VPN as protocol of choice for cloud bridging.

 

 

0 Kudos
Version history
Last update:
‎17-Dec-2012 05:34
Updated by:
F5 Employee
Contributors
Copyright © 2023 Khoros, LLC