How to enable ESP Null Encryption in an ISA Firewall site-to-site VPN scenario
In many documents on http://www.microsoft.com/isaserver/techinfo/guidan...n.mspx Clint Denham includes a section that briefly describes how IPSec works in tunnel mode. When using Encapsulating Security Payload (ESP), traffic is typically encrypted using Data Encryption Standard (DES) or Triple DES (3DES) and authenticated with SHA1 or MD5. However, you can specify to use Null Encryption, that is no encryption at all, so that the packet structure with ESP can be seen as it traverses the network. Unfortunately, neither of those documents explains how to enable ESP Null Encryption on ISA 2004 in a site-to-site VPN scenario. If you want to know how to do that, read on.
Check out http://users.skynet.be/spouseele/ESPNullEncrypt/IS...on.htm for full details on how to enable IPSec null encryption on ISA firewall site to site VPN tunnel.
Stefaan Pouseele Says:
April 3rd, 2006 at 9:38 am
I believe that the author of many of the articles on the Microsoft site is ClintD (http://forums.isaserver.org/showProfile.aspx?memid=59). It’s definitely not me
Stefaan
Thomas Shinder Says:
April 3rd, 2006 at 9:44 am
Hi Stefaan,
Whoops!
Fixed.
Thanks!
Tom