Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Create a new article
Bookmark
|
Subscribe
|
319411
Views
55
Helpful
13
Comments

Main Mode Vs Aggressive Mode

mmitesha
Level 1
Level 1

‎11-27-2009 07:13 AM - edited ‎08-23-2017 10:52 PM

 

 

 

 

Main Mode

 

An IKE session begins with the initiator sending a proposal or proposals to the responder. The proposals define what encryption and authentication protocols are acceptable, how long keys should remain active, and whether perfect forward secrecy should be enforced, for example. Multiple proposals can be sent in one offering. The first exchange between nodes establishes the basic security policy; the initiator proposes the encryption and authentication algorithms it is willing to use. The responder chooses the appropriate proposal (we'll assume a proposal is chosen) and sends it to the initiator. The next exchange passes Diffie-Hellman public keys and other data. All further negotiation is encrypted within the IKE SA. The third exchange authenticates the ISAKMP session. Once the IKE SA is established, IPSec negotiation (Quick Mode) begins.

 

 

Aggressive Mode

 

Aggressive Mode squeezes the IKE SA negotiation into three packets, with all data required for the SA passed by the initiator. The responder sends the proposal, key material and ID, and authenticates the session in the next packet. The initiator replies by authenticating the session. Negotiation is quicker, and the initiator and responder ID pass in the clear.

 

 

Quick Mode

 

IPSec negotiation, or Quick Mode, is similar to an Aggressive Mode IKE negotiation, except negotiation must be protected within an IKE SA. Quick Mode negotiates the SA for the data encryption and manages the key exchange for that IPSec SA.

 

Graphical Representation

 

ws22.gif

Labels:
Comments
Patrick0711
Level 3
Level 3
‎11-27-2009 06:22 PM

Please note that the use of PFS is suggested in the first quick mode message via the optional KE payload, not within IKE Phase 1.

thirdmiccom
Level 1
Level 1
‎05-02-2012 01:55 AM

how can configure cisco 877 on main mode?

Maykol Rojas
Cisco Employee
Cisco Employee
‎05-07-2012 11:11 PM

You can create an Isakmp profile and set the mode to agressive. Then apply it to the crypto map.

Devang Badrakiya
Community Member
‎07-28-2014 02:13 AM

Please Briefly Explain why we have to make septate tunnel for SA & IPSec for VPN Connectivity ?

Why we build two tunnel (SA and IPSec) for VPN Data Transfer ? can it possible through only one tunnel ?

PatryckDumit
Level 1
Level 1
‎06-25-2015 08:03 PM

Devang,

First tunnel (ISAKMP - phase 1) both sides initiates and agree on terms they'll use (as described in figure). At this point, if any config that must be the same on both sides are different, then your VPN won't be established.

Second tunnel (IPSec - phase 2) is created for encryption. You can use it or not, but it's highly recommended to use it.

Transit data will flow through 2nd tunnel, encrypted.

You can verify your SAs with these commands:

 show crypto isakmp sa

 show crypto ipsec sa peer «peer's IP»

 

HTH,

Patryck Dumit

maszeliga
Community Member
‎02-05-2016 01:40 AM

How do I connect a Cisco / iPhone VPN client to a firewall running main mode ?

As soon as I disable aggressive mode VPN clients are not able to connect.

secureIT
Level 4
Level 4
‎06-21-2016 02:25 AM

Right....perfect forward secrecy comes in Phase 2, not in Phase 1.

srinivas.2692
Community Member
‎07-31-2016 11:25 AM

Hi Patryck,

I have a question here. For DH Key exchange, first we need to agree upon prime number "p" (prime modulus) and other number "g" (generator).

Can you mention in which message we are going to negotiate/agree on these numbers..?

I have checked pcap files and i don't see these values anywhere.

Thanks,

Srini

sarahr202
Level 5
Level 5
‎08-28-2016 11:53 AM

I beg to disagree with the highlighted text below:

Aggressive Mode squeezes the IKE SA negotiation into three packets, with all data required for the SA passed by the initiator. The responder sends the proposal, key material and ID, and authenticates the session in the next packet. The initiator replies by authenticating the session. Negotiation is quicker, and the initiator and responder ID pass in the clear.

It is partly truethe initiator in the very first message lists Identification ID which is set to responder's IP. This is in clear text, responder sends the 2nd message in clear text with hash calculated . Now at this point initiator knows responder agrees its SA proposal sent in first message, initiator can now use session key, to ecrypyt message,the third message from initiator is encrypted which carries Identification ID as its own IP,  calculated hash, so we see only responder ID is sent in clear text not initiator's ID.

For detail look at its capture file for aggressive mode:

https://www.cloudshark.org/captures/e51f5c8a6b24

Thanks,

limlayhin
Level 1
Level 1
‎09-01-2016 09:55 PM

Hi Sara: 

The link that you provided is not working. 

Will like to understand more whether this vulnerability flag on aggressive mode is valid or not. 

nicole.briddon
Level 1
Level 1
‎01-22-2020 02:13 PM

Looks like Sarah's link shows only the Responder ID, as mentioned (Aggressive Mode). Here's a pic, in case the link doesn't work for you.

Interesting stuff!


You can use it with certs for identity protection, though.

This link also has some quick and useful info:

http://www.internet-computer-security.com/VPN-Guide/Aggressive-Mode.html

 

IKE Aggressive Responder ID Clear Text.png

GlamorousToffee
Level 1
Level 1
‎02-06-2020 11:06 PM

It is partly true, the initiator in the very first message lists Identification ID which is set to responder's IP. This is in clear text, responder sends the 2nd message in clear text with hash calculated . Now at this point initiator knows responder agrees its SA proposal sent in first message, initiator can now use session key, to ecrypyt message,the third message from initiator is encrypted which carries Identification ID as its own IP, visit here calculated hash, so we see only responder ID is sent in clear text not initiator's ID.

jonsrnangerang420
Level 1
Level 1
‎04-26-2021 06:05 AM

@ GlamorousToffee

"It is partly true, the initiator in the very first message lists Identification ID which is set to responder's IP. This is in clear text, responder sends the 2nd message in clear text with hash calculated . Now at this point initiator knows responder agrees its SA proposal sent in first message, initiator can now use session key, to ecrypyt message,the third message from initiator is encrypted which carries Identification ID as its own IP, visit here calculated hash, so we see only responder ID is sent in clear text not initiator's ID."

 

Thanks a lot for detailed information regarding this one really help me a lot.

 

 

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Top