[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

doubt regarding the newgroup mode

To: <ipsec@lists.tislabs.com>
Subject: doubt regarding the newgroup mode
From: "jyothi" <vjyothi@intotoinc.com>
Date: Mon, 17 Sep 2001 17:46:04 +0530
Organization: Intoto Inc.
Reply-To: "jyothi" <vjyothi@intotoinc.com>
Sender: owner-ipsec@lists.tislabs.com

Hi all,

I have some doubts regarding new group mode.

1. What exactly do we mean by a diffie-hellman private group?

Does it mean that " we are sending some prime and generator which satisfies Diffie-Hellman MODP conditions in case if group type is MODP by encrypting with the sessions key established in phase-I SA."

2. If we are supporting both XAUTH and new group mode , which one MUST be negotiated first.

3. If either peers start new group mode at the same time which one we have to accept. In other words how this negotation should go on?

4. In the New Group Mode we send the prime, Generator and the group number in a transform payload. How will the peer accept the matching transforms if we send multiple transforms?

Any help regarding these questions is highly appreciated..

Awaiting ur valuable response.

Thanks in advance.

Regards

Jyothi

Prev by Date: Re: IPSEC Minutes
Next by Date: doubt regarding the newgroup mode
Prev by thread: Re: IPSEC Minutes
Next by thread: doubt regarding the newgroup mode
Index(es):
- Main
- Thread