IPv6 readyNote: This archive passes through spamassassin. Every mail marked with the subject "*****SPAM*****" has exceed a certain threshold of spam-like behaviour.

RE: [Users] automatic vs. manual keying

From: George Hadjichristofi (ghadjich_at_adelphia.net)
Date: Fri May 03 2002 - 14:49:02 CEST

Hi Henry,

I have a few more questions related to automatic keying/manual keying.
Is the IKE used in manual keying?

When we use pre-shared keys does that imply manual keying?

When we use automatic keying is the "PSK" or "RSA" (stored in the
ipsec.secrets file) used, or are those for manual keying?

If those are not used for automatic keying, then what does automatic keying
use to negotiate a connection?

Thanks in advance
George

-----Original Message-----
From: Henry Spencer [mailto:henry_at_spsystems.net]
Sent: Friday, April 19, 2002 12:46 PM
To: George Hadjichristofi
Cc: Freeswan
Subject: Re: [Users] automatic vs. manual keying

On Fri, 19 Apr 2002, George Hadjichristofi wrote:
> I have two quick questions:

Okay, two quick answers. :-)

> Where is the key stored when using IKE ?(eg. ipsec.conf, secrets.conf )

Within the kernel, put there by the IKE daemon. It never appears in a
file anywhere.

> Can the keys be negotiated periodically in manual keying?

There is no negotiation of any kind in manual keying. If you want to
change the keys periodically, you have to do it yourself.

                                                          Henry Spencer
                                                       henry_at_spsystems.net

_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users

This archive was generated by hypermail 2.1.3 : Mon Jul 29 2002 - 05:19:57 CEST