Category Archives: Networking

Dead peer detection RFC 3706

DPD overcome shortcoming of keepalives and heartbeats. Keepalive and heartbeat should be exchanged on regular interval of time however with DPD it is not like that. If there is ongoing valid IPSec traffic between the two peers then there is … Continue reading

Posted in Networking | Tagged , | Leave a comment

NAT-T in IKE RFC 3947

NAT-T (NAT Traversal): Why we need NAT-T?: If the IPSec peer are behind some NAT device then the NAT device will not be able to do NAT because ESP packet doesnot have any L4 port so with the help of … Continue reading

Posted in Networking | Tagged , | Leave a comment

Deffi Hellman Algo

Deffie hellman Algo is used to generate same secret key between two devices without transferring the key over network. DH groups: DH group 1  –  768 bit modulus DH group 2  – 1024 bit modulus DH group 5  – 1536 … Continue reading

Posted in Networking | Tagged , | Leave a comment

RFC

IP 791 TCP 793 ISAKMP 2408 IKE 2409 NAT-T 3947

Posted in Networking | Tagged | Leave a comment

IPSec

IPSec provides: Integrity, Authentication, Confidentiality. Integrity means that received data is not altered by someone this is done by hashing. Authentication means per should provide its identity to prove what he claims to be is correct this is done by … Continue reading

Posted in ipsec, Networking | Tagged , , , , , , , | Leave a comment

UDP (User datagram protocol)

+——–+——–+——–+——–+ |     Source      |   Destination   | |      Port       |      Port       | +——–+——–+——–+——–+ |                 |                 | |     Length      |    Checksum     | +——–+——–+——–+——–+ UDP psuedo header +——–+——–+——–+——–+ |          source address           | +——–+——–+——–+——–+ |        destination address        | +——–+——–+——–+——–+ |  zero  |protocol|   UDP length    … Continue reading

Posted in Networking | Leave a comment

ARP (Address Resolution Protocol)

+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ |          Hardware type                 |            Protocol Type               | |            16 bit                      |              16 bit                    | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Hardware Address Length  | Protocol Address Length  |          OpCode           | |         8 bit            |         8 bit            |          16 bit           | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ |                    Sender Hardware Address (48 bit)                             | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-++-+-+ |                    Sender Protocol Address(ip)(32 bit)                          | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-++-+-+ |                    Destination Hardware Address(48 bit)                         | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-++-+-+ |                    Destination Protocol Address(ip)(32 … Continue reading

Posted in Networking | Leave a comment