pharaoh fortune slot
ExamNotes.net
Welcome, Guest. Please login or register.
November 24, 2017, 03:23:07 AM

Login with username, password and session length
* Home Help Search Login Register
+  ExamNotes.net
|-+  Microsoft (MCSE, MCSD, MOUS, MCAD)
| |-+  MCSE elective exams
| | |-+  70-214
| | | |-+  IPSEC and CA
0 Members and 1 Guest are viewing this topic. « previous next »
Pages: [1] Print
Author Topic: IPSEC and CA  (Read 2099 times)
kevinvasoft
Member
Jr. Member
**
Offline Offline

Posts: 67

0


View Profile
« on: November 15, 2002, 01:29:02 PM »

OK, here it goes.

Im a cisco engineer and generally understand IPSec and understand that CA is related but i just don't know how.  Can someone opne the curtains and let some light in???:confused:
Logged
jeff_j_black
that's what "THEY" said..
Hero Member
*****
Offline Offline

Posts: 2723

2


View Profile
« Reply #1 on: November 15, 2002, 11:18:30 PM »

Certificates from reliable sources are used to validate the public key to the private key for authentication and encryption protocols.
Logged
cm2gj
www.cm2gj.com
Hero Member
*****
Offline Offline

Posts: 5222

2


View Profile WWW
« Reply #2 on: December 14, 2002, 04:43:48 AM »

Quote
Originally posted by jeff_j_black
Certificates from reliable sources are used to validate the public key to the private key for authentication and encryption protocols.


for ipsec a certificate server is required. but i don??t know how a vpn hardware i have make ipsec vpns without a certificate. using a hash algorithm both sides use vpn l2tp with ipsec to comunication.
Logged

Best Regards
Alex
alexisgarcia72@hotmail.com
Cuban in Mexico
www.cm2gj.com
jeff_j_black
that's what "THEY" said..
Hero Member
*****
Offline Offline

Posts: 2723

2


View Profile
« Reply #3 on: December 14, 2002, 10:16:13 AM »

This probably does not use certificates, but uses a pre-shared key. Do you put the same 'password' on the router at each side?
Logged
cm2gj
www.cm2gj.com
Hero Member
*****
Offline Offline

Posts: 5222

2


View Profile WWW
« Reply #4 on: December 14, 2002, 10:37:41 PM »

Quote
Originally posted by jeff_j_black
This probably does not use certificates, but uses a pre-shared key. Do you put the same 'password' on the router at each side?


yes.
we use a preshared key. and some mda5 settings. is a vpn + ipsec tunnel.
Logged

Best Regards
Alex
alexisgarcia72@hotmail.com
Cuban in Mexico
www.cm2gj.com
chodan
Senior Member
Hero Member
*****
Offline Offline

Posts: 1576

0


View Profile WWW
« Reply #5 on: December 27, 2002, 10:23:01 PM »

A good example of a CA is the public encryption keys embeded in web browser by verisign or microsoft.
 The CA could be the server that issues the private key that matches the embeded key.

In windows 2000 you can create your own CA and generate your own keys.
 The only problem is that end users will have to click on a warning to except the key you created.
 If a CA like Microsoft or Verisign or the like created the key then it will be transparent to the end user.
Logged

Check out my music at
www.chodan.com
Rural Development in Eastern Ky.
www.centertech.com
 "It is our decisions that show us what we truly are in life, not our abilities."
cm2gj
www.cm2gj.com
Hero Member
*****
Offline Offline

Posts: 5222

2


View Profile WWW
« Reply #6 on: December 28, 2002, 04:26:11 AM »

Quote
Originally posted by chodan
A good example of a CA is the public encryption keys embeded in web browser by verisign or microsoft.
 The CA could be the server that issues the private key that matches the embeded key.

In windows 2000 you can create your own CA and generate your own keys.
 The only problem is that end users will have to click on a warning to except the key you created.
 If a CA like Microsoft or Verisign or the like created the key then it will be transparent to the end user.


thanks for the tip.
i don`t understand how works the signature on emails provide by verysign (when you buy the service)
Logged

Best Regards
Alex
alexisgarcia72@hotmail.com
Cuban in Mexico
www.cm2gj.com
Pages: [1] Print 
« previous next »
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.13 | SMF © 2006-2011, Simple Machines LLC Valid XHTML 1.0! Valid CSS!