Email and IPSec
Posted on 2009-04-28
I'd like to hear an explanation of how IPSec works with specific relation to email, in particular, I'd like to know how the encryption of the ESP header relates to the IP header with the routing information in it - for example, do network routers need to decrypt the ESP to do routing, or can they use a (presumably still) unencrypted IP header destination address - if it is indeed still unencrypted? (I say this because I understand that the ESP is dropped in before the IP header, and therefore I'm assuming that the IP header is left alone. This is what I want to clear up for myself mostly.) Thanks.