IPsec

Works on the Network Layer (OSI-Level 3)

Consists of two protocols:

Authentication Header (AH)

Encapsulating Security Payload (ESP)

Two modes:

tunnel mode (being the default on OpenBSD)

transport mode