IPSec VPN

• A protocol suite used to secure data sent over IP networks.

• Encrypts and authenticates the communication between two endpoints (like AWS and on-premises).

---

⚙️ IPSec VPN Negotiation Phases

• Phase 1:

  • Establishes a secure channel between the two participants.

  • Negotiates a shared secret and sets up the IKE (Internet Key Exchange) session.

• Phase 2:

  • Negotiates the IPSec Security Association (SA).

  • Defines how actual traffic will be encrypted and authenticated through the tunnel.

---

🧠 Quick Summary

Phase	Purpose
Phase 1	Create a secure channel for negotiating security settings
Phase 2	Establish encryption/authentication rules for traffic