Highest Voted 'ipsec' Questions

1

vote

2 answers

Programming a VPN, Authontication stage - RFC not clear enough

I have a custom build of a Unix OS. My task: Adding an IPSec to the OS. I am working on Phase I, done sending the first 2 packets. What I am trying to do now is making the Identification Payload. I've been reading RFC 2409 (Apendix B) which discuss…

asked Mar 23 '10 at 15:21

Tal A.

397
1
2
15

1

vote

1 answer

how to get undecoded payload from tshark?

I'm trying to get the undecoded part from a pacap file by using tshark, but it only shows the part it can decode, the rest of the payload is missing, is there a way to get the rest of the part? log as below. I need to get the ESP payload which is…

pcap tshark ipsec

asked Apr 24 '14 at 13:49

aaronsun

41
1
5

1

vote

0 answers

why a layer 2 tunneling protocol when we already have layer 3 tunneling protocol

In network, a tunnel is a logical connection between two nodes. In the tunnel, there are multiple routers that physically comprise the path. Hence the packets in a tunnel are essentially routed via IP. (correct me if I am wrong) This makes sense to…

networking tunnel ipsec pptp l2tp

asked Apr 16 '14 at 14:18

Daniel

1,484
5
24
42

1

vote

1 answer

How to analyze/craft packets before they are sent/received?

I've been wondering how IPSec works from a developer s point of view, 'cuz I would like to be able to write my own custom "agent" to intercept and analyze packets before they are received by the OS mostly on Linux, and also do an injection at the…

packet-capture ipsec packet-injection

asked Jan 20 '14 at 01:01

Mirak

19
1

1

vote

1 answer

Update IPsec keys using XFRM messages

I am working on a C++ project where it is necessary to establish IPsec SAs with ESP and rapidly change the encryption key. My question is the following: Is there a way to update encryption IPsec keys without deleting the corresponding SA and…

c++ linux ipsec

asked Nov 11 '13 at 09:39

Marste

627
7
22

1

vote

1 answer

IPSec tunnel between Cisco ASA and and Linux IPSec (racoon) stops working

I have a VPN concentrator VM that runs Linux 2.6.18 (RHEL version 2.6.18-274.12.1.el5) with ipsec-tools 0.7.3. I have a bunch of connections to various concentrators, but there is one that keeps dying on me. The remote is a Cisco ASA. Phase 1 and…

linux ipsec

asked Oct 25 '13 at 10:11

w00t

17,944
8
54
62

1

vote

1 answer

opening a socket secured with ipsec (per socket ipsec configuration)

I have searched all over the internet (including man pages) for a way to open a socket which will be secured with ipsec (using C). I am interested in controlling and configuring the socket form within the program (internally). I tried to follow…

c sockets ubuntu linux-kernel ipsec

asked Oct 15 '13 at 14:36

yakov

61
2
6

1

vote

0 answers

IPsec and racoon, custom function

Im working on setting up IP sec and im a bit confused. setkey racoon <-------(IKE)-------> somebody | ^ | (5) | | |(6) |(1) +-----+ +---+ | (4)| …

ubuntu ipsec

asked Aug 22 '13 at 22:58

Tim Vrakas

121
6

1

vote

1 answer

Secure communication between two instances of same Android app

I'm currently designing a system that should allow two instances of the same Android app to communicate securely. 1) Is the SSL protocol the best choice? Or I should move to IPsec!? (I am thinking of exploiting a client-server model with the…

android ssl ipsec

asked Jun 26 '13 at 16:42

Giuseppe

447
2
5
14

1

vote

1 answer

Is there a cmdlet in PowerShell 2 to handle ipsec changes?

I am using System.Management.Automation to build a program that serves as a firewall, essentially, and I was wondering if there is a specific cmdlet in PowerShell 2 to handle ipsec changes for a server? (i.e., that duplicates netsh ipsec…

c# powershell ipsec

asked Nov 09 '09 at 19:28

asteroid

755
3
9
20

1

vote

2 answers

How does the IPSec Key Exchange protocol work?

I need to fully understand the IPSec Phase 1 negotiation. now, I break this to 3 steps: Algorithm negotiations Key Exchange Data Identification I'm using Wireshark to investigate the process and so far I fully understand the first part (Algorithm…

cryptography md5 ipsec diffie-hellman

asked Nov 04 '09 at 12:58

Tal A.

397
1
2
15

1

vote

1 answer

Remove IPSEC policy from W2k3 DC

I just can't for the life of me remember. We were setting up IPSEC for a VPN along time ago and added IPSEC that has always caused 1091 1085 errors. We are not using it so I would like to remove it but cant find where.

windows-server-2003 ipsec

asked Sep 03 '09 at 08:01

Bernesto

1,368
17
19

1

vote

2 answers

IPSec AES 256 encryption in Windows XP with Service Pack 3?

Does IPsec in Windows XP Sp3 support AES-256 encryption? Update: Windows IPsec FAQ says that it's not supported in Windows XP, but maybe they changed it in Service Pack 3? http://www.microsoft.com/technet/network/ipsec/ipsecfaq.mspx Question: Is…

windows-xp aes ipsec

asked Sep 25 '08 at 13:48

Karol

33
2
6

1

vote

1 answer

IPsec/Openswan log user name and public IP

I'm attempting to have a slightly more organized openswan logging system and I think I've over thought it. I'm really just trying to save username and public IPs. This is what I so far but it's still returning more data than I need and I'd rather…

linux vpn ipsec

asked Aug 02 '12 at 01:55

Joel

43
5

1

vote

1 answer

Using Linux Kernel Cryptography API for IPSec

I would like to use salsa20 from Linux Crypto API as encrption algrothim for IPSec ESP. I have established an IPSec connection (between two VMs) using default settings in racoon successfully remote 192.168.75.3 { exchange_mode aggressive, main; …

linux encryption linux-kernel fedora ipsec

asked Jul 20 '12 at 11:14

Alno986

51
1
7

Questions tagged [ipsec]