Certified Ethical Hacker (CEH v11) — Question 46

Which mode of IPSec should you use to assure security and confidentiality of data within the same LAN?

Answer options

• A. ESP transport mode
• B. ESP confidential
• C. AH permiscuous
• D. AH Tunnel mode

Correct answer: A

Explanation

The correct answer is A, ESP transport mode, as it provides end-to-end encryption for the payload while keeping the original IP header intact, which is suitable for LAN communication. The other options, such as ESP confidential and AH permiscuous, do not specifically address the encryption needs in a LAN context, and AH Tunnel mode is not appropriate for securing data within the same network segment.