ISAKMP/IKE Phase 1

As you saw in the list in the preceding section, some of the same steps are performed in both the site-to-site and remote access IPsec setup; however, remote access has quite a few additional steps. In this current section, I’ll expand on the IPsec setup steps and cover them in more depth.

ISAKMP and IKE work together to establish secure connectivity between two devices. ISAKMP defines the message format, the mechanics for a key exchange protocol, and the negotiation process to build connections. ISAKMP, however (as already mentioned), doesn’t define how keys are created, shared, or managed for protecting the secure connections; IKE is responsible for this.

To help you understand the actual details of how an ISAKMP/IKE Phase ...

Get The Complete Cisco VPN Configuration Guide now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.