![]() In this negotiation there are 6 messages, or 3 pairs of back-and-forth exchanges. You posted a capture of an IKEv1 Main Mode negotiation. R2#show running-config | section crypto|isakmp|access-list R1#show running-config | section crypto|isakmp|access-listĬrypto ipsec transform-set ESP_AES_192_SHA1 esp-aes 192 esp-sha-hmac ![]() This is my configuration for your reference. Can someone explain the phase 1 process by referencing the capture above. Phase 1 seems to be a bit complicated to me. Is is the actual DH key that is being exchanged? ![]() If you at the packet 77, we see the field "Key Exchange Data". As per my understanding in the capture below, the first 2 messages are agreeing on the parameters, the next 2 are key exchange the final 2 is authenticating each other? I need to confirm my understanding of IPSEC phase 1.
0 Comments
Leave a Reply. |