Please enable JavaScript.
Coggle requires JavaScript to display documents.
VPN (RFC4301 Security Architecture for the Internet Protocol (RFC 7296 …
VPN
RFC4301
Security Architecture for the Internet Protocol
RFC 6040
Tunnelling of Explicit Congestion Notification
RFC7619
The NULL Authentication Method in the Internet Key Exchange Protocol Version 2 (IKEv2)
RFC 4302
IP Authentication Header
RFC 4303
IP Encapsulating Security Payload (ESP)
RFC 7321
Cryptographic Algorithm Implementation Requirements and Usage Guidance
for Encapsulating Security Payload (ESP) and Authentication Header (AH)
RFC 8221
Cryptographic Algorithm Implementation Requirements and Usage Guidance
for Encapsulating Security Payload (ESP) and Authentication Header (AH)
RFC 7296
Internet Key Exchange Protocol Version 2 (IKEv2)
RFC 7427
Signature Authentication in the Internet Key Exchange Version 2 (IKEv2)
RFC 7670
Generic Raw Public-Key Support for IKEv2
RFC 8247
Algorithm Implementation Requirements and Usage Guidance for the Internet Key Exchange Protocol Version 2 (IKEv2)
IKEv1 is deprecated
Diffie-Hellman
RFC 3526
More Modular Exponential (MODP) Diffie-Hellman groups for Internet Key Exchange (IKE)
RFC 5114
Additional Diffie-Hellman Groups for Use with IETF Standards
RFC 6954
Using the Elliptic Curve Cryptography (ECC) Brainpool Curves for the Internet Key Exchange Protocol Version 2 (IKEv2)
RFC 8031
Curve25519 and Curve448 for the Internet Key Exchange Protocol Version 2 (IKEv2) Key Agreement
IPSec
IKEv2
Transform Type 1 - Encryption Algorithm Transform IDs
12 ENCR_AES_CBC
16 ENCR_AES_CCM_16
20 ENCR_AES_GCM_16
28 ENCR_CHACHA20_POLY1305
Transform Type 2 - Pseudorandom Function Transform IDs
8 PRF_AES128_CMAC
7 PRF_HMAC_SHA2_512
6 PRF_HMAC_SHA2_384
Transform Type 3 - Integrity Algorithm Transform IDs
14 AUTH_HMAC_SHA2_512_256
13 AUTH_HMAC_SHA2_384_192
11 AUTH_AES_256_GMAC
Transform Type 4 - Diffie-Hellman Group Transform IDs
32 Curve448
26 224-bit Random ECP Group
21 521-bit random ECP group
18 8192-bit MODP Group
Transform Type 5 - Extended Sequence Numbers Transform IDs
IKEv2 Identification Payload ID Types
33 Security Association SA
34 Key Exchange KE
IKEv2 Certificate Encodings
IKEv2 Hash Algorithms
0 Reserved
1 SHA1
2 SHA2-256
3 SHA2-384
4 SHA2-512
5 Identity
IKEv1
Fase 1
Main Mode
Aggressive Mode
Fase 2
Quick Mode
GRE
ESP
AH
Crypt Algorithms
Symmetric
DES
3DES
AES
CGM
RC4
SEAL
Blowfish
Asymmetric
RSA
ECC
DSA
Hash
MD5
SHA
SHA-2
Signature
HMAC
Key Exchange
Manual
Diffie-Hellman
ECDH
ECDSA?
Asymmetric Encryption
VPN
Trusted VPNs
FR
ATM
MPLS
L2
L3
VPLS
GRE
LISP
eVPN
Security
SSL
MACsec,
Link Encryption
IPsec
DMVPN
GET
Network Topologies
Hub and spoke
Point-To-Point
Dynamic Point-To-Point
Mesh
Full
Partial
MPLS
VPN L2
VPN L3
RFC 2408
Internet Security Association and Key Management Protocol (ISAKMP)x
RFC 4306
RFC 5996
Internet Key Exchange Protocol Version 2 (IKEv2)
RFC 7296
Internet Key Exchange Protocol Version 2 (IKEv2)
Cisco IOS
VTI
IPsec
Profile
Transform-set
IKEv2 Profile
IKEv2 Keyring
Authentication
Remote
Local
match remote identity