This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
About RobinNicholson
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- LIVEcommunity
- About RobinNicholson
11-04-2019
1Post
2Likes
0Solutions
Nov 04, 2019Last Visited
User
Activity
User
Profile
Latest posts by RobinNicholson
| Subject | Views | Posted |
|---|---|---|
| 3853 | 08-01-2019 08:51 AM |
My Liked Posts
| Subject | Likes | Posted |
|---|---|---|
| 2 Likes | 08-01-2019 08:51 AM |
Posts I Liked
| Subject | Likes | Author | Latest Post |
|---|---|---|---|
| 7 Likes |
User Badges
Community Statistics
| Member Since | 12-22-2017 02:22 PM |
| Date Last Visited | 11-04-2019 11:55 AM |
| Posts | 1 |
| Total Likes Received | 2 |
08-01-2019
08:51 AM
2 Kudos
I was looking at some of the comments/questions on the PaloAlto community board trying to figure this out. But I've confused myself. IPSEC is a layer 3 protocol and SSL operates at layers 5 and 6. As a “fall back” protocol for GP – is that in case if there are problems with establishing the tunnel through the end user’s ISP (as one comment indicated) or is it in case of authentication problems due to latency and degradation of the tunnel as it passes from inside to outside. I can see the L3 IPSEC tunnel being best for outside endpoint connections. And as far as SSL, since it works more at an application layer, using it for navigating the internal network, such as file shares and applications that aren’t web-based. (Can there be a mid-transmission switch like that?) So, in essence running both protocols being dependent on type of data access. But wouldn’t that kind of transition cause latency against wire speed transmissions? I just don’t understand the “fall back” aspect. Are we expecting that in some circumstances IPSEC will fail?
... View more
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
11-04-2019
11:55 AM
|
LEGAL NOTICES
Copyright 2007 - 2022 - Palo Alto Networks