[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Preshared key bound to peer IP address in main mode

To: "Chen, Jun (Jun)" <cjun@lucent.com>
Subject: Re: Preshared key bound to peer IP address in main mode
From: Derek Atkins <warlord@mit.edu>
Date: 27 Aug 2001 10:14:47 -0400
Cc: ipsec@lists.tislabs.com
In-Reply-To: "Chen, Jun's message of "Sun, 26 Aug 2001 16:06:23 +0800"
References: <765C241A3031D3119F050008C7E9C2CC095A5B11@SI2061EXCH001U>
Sender: owner-ipsec@lists.tislabs.com

When using pre-shared keys with Main Mode, the only ID you can
use is IP Address.

-derek

"Chen, Jun (Jun)" <cjun@lucent.com> writes:

> Hi all
> 	I am new to IPSec. I don't understand the following statement in
> RFC2409 IKE (page 16)
> 
> "When using pre-shared key authentication with Main Mode the key can only be
> identified by the
> IP address of the peers since HASH_I must be computed before the initiator
> has process IDir"
> 
> I would highly appreciate if some can give a guide for this. It really make
> me confuse.
> 
> With Best Regards,
> 
> Chen Jun
> 
> 
> > Lucent Technologies Singapore Pte Ltd
> > Customer Technical Support (CTS)
> > 750D Chai Chee Rd, #06-01 (Lift Lobby 1)
> > Technopark @ Chai Chee 
> > Singapore 469004
> Tel: +65 - 240 8741
> Fax: +65 - 240 8522
> Email: cjun@lucent.com
> 
> 
> 
> 

-- 
       Derek Atkins, SB '93 MIT EE, SM '95 MIT Media Laboratory
       Member, MIT Student Information Processing Board  (SIPB)
       URL: http://web.mit.edu/warlord/    PP-ASEL-IA     N1NWH
       warlord@MIT.EDU                        PGP key available

References:

Preshared key bound to peer IP address in main mode

From: "Chen, Jun (Jun)" <cjun@lucent.com>

Prev by Date: RE: IKE and certificate chains
Next by Date: RE: Ipsec load balancing devices - UDP-ESP impact
Prev by thread: Preshared key bound to peer IP address in main mode
Next by thread: IPSec client...
Index(es):
- Main
- Thread