Transparent Tunnelling IPSec Client VPN
Just watching Brians IOS Easy VPN Server video & something's confused me. He talks about transparent tunneling, and specifically says this one line that confused me.
"When transparent tunneling is inactive, this means that we are gonna be sending the traffic natively over esp, it's not encap'd in udp or tcp"
So what, there is no layer 4 header at all? I know ISAKMP uses UDP port 500, so I can't get my head around him saying there is no encapsulation in UDP or TCP. I just can't put 2 and 2 together, can someone explain?
Also what is the default, inactive or active?