[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: difference in IKE main and aggressive mode
Hi,
On Thu, Dec 05, 2002 at 01:26:43PM -0500, Atul.Sharma@nokia.com wrote:
> ...
> There are other restrictions with Aggressive mode....e.g. SA negotiation
> is limited:
> - Cannot negotiate the DH group
> - when using revised mode of public key encryption, the hash and cipher
> can not be negotiated
ISAKMP/IKE's weak cookie mechanism is rendered completly useless with
aggressive mode.
Cheers,
Hans
--
pub 1024D/513AEFD9 1999-12-18 Hans-Joerg Hoexer
<Hans-Joerg.Hoexer@yerbouti.franken.de>
Key fingerprint = 83D2 436A 0D3C 34A9 E0FF 4C33 35F6 617C 513A EFD9