I'm nine years late, but thank you for sharing this video! I was struggling with understanding how the dynamic routing protocol fits into DMVPNs and NHRP and this video helped me greatly.

Almost wish TTL had an option like sending it with a -1 so it generates the ICMP message on each hop but still continues towards destination.

Thank you!!! :)

Best teacher giving the why of concepts , thank you very much.

9 years later and still this is gold. The underlying principles never change that fast. It is the decor on top! Thanks so much Ryan.

Amazing refreshing of IPSec IKEv1 and Phase 1, Phase 2, and breakdowns of what is going on. Truly a masterful teaching lesson. Thank you.

Awesome explanation, thank you

Ryan, do you have any active courses?

Just found this after trying to understand it by reading multiple online sources and the SVPN official cert guide material. Thanks, Ryan. Your videos are awesome.

Thanks for your effort and sharing this information🙇‍♂

Best explanation ever!!!

The ICMP wiki page has been updated to say it is Layer 3. "ICMP is a network-layer protocol, this makes it layer 3 protocol by the 7 layer OSI model." and "There is no TCP or UDP port number associated with ICMP packets as these numbers are associated with the transport layer above." -- What are your thoughts today on this?

great explanation, easy to understand since you explain it well.

Comprehensive I wish you had full courses

Great video. One thing to mention is that both ESP and AH have protocol numbers. 50 and 51, respectively.

Absolutely superb thank you loads a true expert makes the difficult, easy (relatively) to understand.

I usually watch these at 1.5 times, happy to say it's one of the first videos that made me do a spit take and slow it down to 1.0 times haha. Good content.

I truly regret Ryan stopped adding videos , one of the best networking lecturer , this lesson here , best explanation of differences between ESP and AH , take care Ryan

Thank you brother!!

we just knew lol

Many thanks Ryan ! brillant explanations !

I finally got it! Thank you :)

your explanation is not that much clear. new engineer can not understand. only experienced engineer can understand. if some one experienced, then why does he need your video?

A company wants to implement a large number of WAPs throughout its building and allow users to be able to move around the building without dropping their connections Which of the following pieces of equipment would be able to handle this requirement? (A). A VPN concentrator (B). A load balancer (C). A wireless controller (D). A RADIUS server

Very good explanation!! Thank you!!

Nice Video thanks!

Amazing content compare to all available on IPsec

finally i know what is it for. I got ask this question in an IV, and i was blank. I only know ARP lol.

OMG. Ryan has updated my resume with a new skill in less than 20 minutes. What took me so long to find this video. Top Notch lesson! Thank you.

GPON network you only see where its terminated (ISP)

im very new to this, however is firewalking really done by trace routing and then using ping ttl to be dead on arrival but still knock on the door so to speak? or am i completely off the mark?

Wikipedia says that ICMP works at L3.

Best IPSEC tutorial I have seen.

Wow ! Such great explaination. Thank you so much. This really helps me in my job. Respect!

Als SSL-VPN (englische Schreibweise: SSL VPN ohne durchkoppelnden Bindestrich) bezeichnet man Systeme, die den Transport privater Daten über öffentliche Netzwerke ermöglichen (siehe VPN) und als Verschlüsselungsprotokoll TLS (alte Bezeichnung: SSL) verwenden. Prinzipiell ist SSL als Verschlüsselungsprotokoll für VPN sowohl für Site-to-Site- als auch End-to-Site-VPNs geeignet. In den 1990er-Jahren gab es Systeme, die SSL als Sicherungsschicht für Site-to-Site-VPNs einsetzten. Mit der Entwicklung von IPsec und der zunehmenden Vernetzung über Organisationsgrenzen hinaus hat das standardisierte, interoperable IPsec sich als Alternative etabliert. Der entscheidende Vorteil von SSL-VPN gegenüber IPsec ist die Bereitstellung des Netzwerk- und Applikationszugriffs für mobile Anwender, da die Konfiguration der Clients einfacher möglich ist als mit einer Lösung durch IPsec. de.wikipedia.org/wiki/SSL-VPN

Ryan u r awesome

Great job man

Man you don't know how much you've helped me with this, thank you very much for your knowledge !!

This is very CLear! Thank you for this Video

zenmap, nmap and visualtraceroute are very useful tools that can be used to have resources to deflect a lot of these hacking technologies that are out there. zenmap / nmap can help "map" out on how certain services may work through the internet and how they interconnected. visualtraceroute will assists on locating on where the service may be hosting at geographically and studies on how the communication works with delay if there is.

amazing, thanks for explaining this topic in most simplistic way possible......

8 years and still this the best explanation ever for ISAKMP/IPsec

is natting at the remote end vpn router what changes the ip address?

Geniuss.. thanks man

Hello I have a question: How is the Router ID helping in the DR elections? Thanks in advance

one of the great way to explain the things, love the way he explain the concept.

Gold content right here

Whoa, that was what I was looking for! No bullshiting about VPN providers but rather providing actuall knowledge :D

Thanks for your time.

The best explanation detail oriented. Thank you