So before any exchange takes place, are the values of the private keys and the public keys(before they are sent), the same as the keys on the other side so when they swap and do the calculations, it always comes to the same value ?
This is the bit I want to work out, as the only command I can see we enter on both sides is for example 'group 2 '.
I know each level of the group is a different level of encryption, and I take it this is the level that it encrypts the entire ISAKMP policy ?.
D-H is used as part of the IKE/ISAKMP policy to create a key that encrypts the data to be transmitted.
Both sides agree on a prime number and a base to use. Then, each side picks a random number that the other side does not know about. Each side performs an operation using the random number, the base and the prime. The results are shared at both sides (they are the same number at both sides)- this result is the key that is then used to encrypt data. Group 2 denotes that the key is 1024 bits, and is therefore more difficult to crack. Group 1 uses a 768 bit key.
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...