IKE Phase1 Tidbit - HAGLE

During my time studying how the internet key exchange (IKE) phase1 process works I stumbled upon something that really hit home for me that makes it easy to remember what is needed during configuration, which is used to allow peers to negotiate security parameters to build a successful security association for the phase1 tunnel. It's simple, HAGLE.

In order to properly negotiate and agree on parameters your IKE policy needs the following:

H = hash

A = authentication

G = dh group

L = lifetime

E = encryption


HAGLE, HAGLE, HAGLE. Cheers!

0 comments

Recent Posts

See All

In this tidbit I want to cover some high level notes on general trustsec items as well as some good-to-knows. A brief overview of what trustsec is: TrustSec provides scalable access controls by uniqu

In this tidbit I will cover some ESA nice-to-know CLI commands & their purposes: > status = view counters/gauges; counters are a total of various events in the system; gauges show current utilization