IPsec vs SSL VPN

mokkan used Ask the Experts™
What is the difference between  SSL vs IPsec VPN? Both needs tunnelng?
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
"Batchelor", Developer and EE Topic Advisor
Top Expert 2015
"Need" is wrong, they build a tunnel. A VPN always needs to encapsulate packets into packets, and that is what is called tunneling.
From technology viewpoint both are not far apart. Both can use the same encryption, hashing, key exchange aso. methods.
A major issue with almost all SSL VPNs is that they are not intended (and cannot be used) for a site-2-site VPN, only client-2-site (dial-in type). And you always have to download and "install" some piece of "VPN client" software.
One exception is OpenVPN, which allows for a full-sized site-2-site connection, but requires installation pre connection.
JohnBusiness Consultant (Owner)
Most Valuable Expert 2012
Expert of the Year 2018
Agree, and we / I use IPsec because the same basic hardware gear supports site-to-site tunnels (which we use) and client-to-gateway tunnels (which we also use. I find IPsec more flexible overall, but is (accordingly) a bit more complex to set up.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial