debugging encrypted part of isakmp
Bruce M Simpson
bms at spc.org
Fri Jan 14 06:07:06 PST 2005
On Fri, Jan 14, 2005 at 11:54:36AM +0200, Andriy Gapon wrote:
> Are there any tools to decode encrypted part of isakmp provided that
> identities of both peers are known to me and that I am able to observe
> the whole exchange ?
man 8 isakmpd:
%%%
-L Enable IKE packet capture. When this option is given, isakmpd
will capture to file an unencrypted copy of the negotiation pack-
ets it is sending and receiveing. This file can later be read by
tcpdump(8) and other utilities using pcap(3).
%%%
Regards,
BMS
More information about the freebsd-security
mailing list