Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 4 Next »




Internet Key Exchange
IKE Version 1 


Phase 1 

Propose : Encryption and Authentication Algorithms

Initiator and respondor: Diffie-Hellman key exchange process  (send Public key + Random number )

            Pre-shared key

            Private Keys ( exchange using PKI ) 

Use the encryoted communication channel

  • Main Mode: 
  • Aggressive Mode:  
Phase 2
IKE Version 2 



Tunnel Mode ( most used )
  • encapsulation of the layer 3 / original packet
  • With ESP(+AH) or just AH



Transport Mode encapsulation of layer 4of the original packet






















  • No labels