Buy or Renew
Buy or Renew
NOTICE: You can now engage in the community. Learn about the great new Cisco Umbrella content.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
223
Views
0
Helpful
1
Replies

Regarding VPN connections in PIX

palsukh2002
Level 1
Level 1

‎12-28-2008 11:59 PM - edited ‎03-11-2019 07:30 AM

In IKE phase-1 we will share the following parameters:-

1. authentication method used to authenticate peers

2.Encryption method(DES/3DES to be used for Phase-2 data encryption)

3. Hash algoritham to be used for Phase-1 and 2

Then why it is mentioned that ESP/AH will be used for encryption and authentication in Phase-2.

Actually it should be mentioned that DES/3DES will be used by Phase-2 to encrypt the data and ESP is used

to encapsulate the encrypted data.Whether the meaning of ESP is to encrypt the data?

4. Similarily what is the meaning of using DH groups--we will share the DH public key during Phase-1,then what is the meaning of DH groups

5.whether 3DES means encrypting the data

3 times as compared to DES which

encrypts the data once i.e.the data is

encrypted with one key and then the encrypted data is again encrypted with second key and then the third key is used for further encryption

Labels:
0 Helpful
1 Reply 1

andrew.prince
Level 10
Level 10

‎12-29-2008 08:29 AM

All good questions, best answered in the original source of the whole standard; the rfc;-

http://www.ietf.org/rfc/rfc2401.txt

HTH>

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card