IKE


The IKE (Internet Key Exchange) daemon is compliant with:
RFC2407: The Internet IP Security Domain of Interpretation for ISAKMP
RFC2408: Internet Security Association and Key Management Protocol (ISAKMP)
RFC2409: The Internet Key Exchange (IKE)
Use the OpenSSL open source library for the crypto parts
racoon (the IKE daemon):
can use both aggressive and main mode as phase 1
can use pre-shared secrets and RSA signatures
can either exchange X509v3 certificates online or get them from local filesystem (SCEP will be supported in the future)