002 IKEv1 vs IKEv2
Вставка
- Опубліковано 21 жов 2024
- CCNP SECURITY - SCOR - 350-701
Recorded by Sikandar Shaik CCIEx3 (RS/SP/SEC)
Includes
• 250+ Videos
• 40 hrs. of Content
• Workbooks (PPT/Labs)
• Software’s for Lab practice
Course Content - www.noasolution...
Demo Course content
• 015 CCNP Security Cert...
• 016 CCNP SCOR 350 701
• 017 SCOR Contents
Lifetime Online Access only for - 100 USD (75000 INR)
(Discounted Price - 70 USD (5000 INR) Limited time offer)
CCNP SECURITY (7 Papers) - 400 USD (30,000 inr)
CCNP (7 papers) + CCIE SECURITY = 500 USD (37,500 inr)
Contact us to your own copy of videos online access
• INFO@noasolutions.com , WhatsApp - +91 9985048840, +91 7036826345
Like & Follow us on Facebook/UA-cam/Twitter for updates
• / sikandar35012
• / noasolutions
• / sikandarshaik
• / sikandarccie
• / sikandarshaik
• ww.noasolutions...
Do we have any separate in depth playlist like BGP for IPSEC because the way you explained BGP was so cool.
May Allah fill up your heart with infinite everlasting HAPPINESS. amin
Hi Sikandar,
Nice eplaination !!
I would like to understand the following:
1) In IKE V1, ISAKMP message 5 and 6 , Does it carry the IP address of IPSEC Peer device for authenticatication ?
2) If so, With NAT-T in place, How the authentication gets succeed as the Public IPaddress of peer device sent in Identification message doesn’t match with the Private IP of the peer device ?
Regards,
Hariharan
Very good videos. I only have 1 suggestion. Probably the explaining text that are handwritten could be typed as 90% unreadable. Yes, there is a voice in the video that is written down so it could explain, however everybody speaks different learnt english and sometimes there were some cases when neither I understand a technical expression nor I can read it or just wanted to re-read what was written. :( Otherwise good videos. Thanks for that.
Thanks for this video but not agree with point asymmetric authentication details please check, it's not like that u can use psk one side and certificate otherwise🙏👍
So how it works? Please comment, I have to understand, clear me.
Yes that is my question as well. I implemented lot of VPN tunnels with different vendor firewalls, I have never seen asymmetric authentication supported even in IKE v2. Does it support in cisco fw or routers alone???
For sure, asymmetric authentication will not work in interoperable devices.
The major difference between IKE versions 1 and 2 lies in terms of the authentication method they allow. IKEv1 allows only one type of authentication at both VPN ends (that is, either pre-shared key or certificate). However, IKEv2 allows asymmetric authentication methods to be configured (that is, pre-shared-key authentication for the originator, but certificate authentication for the responder) using separate local and remote authentication CLIs.
Further, you can have different pre-shared keys at both ends. The Local Pre-shared key at the HQ-ASA end becomes the Remote Pre-shared key at the BQ-ASA end. Likewise, the Remote Pre-shared key at the HQ-ASA end becomes the Local Pre-shared key at the BQ-ASA end.
lol prayed a bit and got IT things no bad
your explaination for asymmetric authentication i feel is not correct .assymmetric encryption is not using different keys but having public and private keys (pki)
I think that assymetric auth != assymetric encryption
Does PFS supports only IKev2 only or both
Both.
Can u give me tuition for ccna? I will pay you sir.
. Please start online classes so that we can join u and will learn from you.. Allah apko aur ilm de.
see the description below