What is the difference between IKE and Manual Key?

Description

What is the difference between IKE and Manual Key?

Resolution

Functionally, IKE and manual key VPN connections are identical; applications will work the same regardless of which is used. The only difference is how the encryption keys and SPIs for the VPN connection are determined.

In IKE VPN, one SonicWall connects to another to negotiate the encryption key, authentication key (if needed by the selected encryption method), and incoming and outgoing SPIs. Once these have been determined, the IKE session between the two locations ends. The two SonicWalls then use the negotiated keys and SPIs to pass packets between the networks behind each unit. Each time an IKE negotiation takes place, new random keys and SPIs are created for the VPN connection. Because of this, IKE is slightly more secure.

In manual key VPN, the encryption key, authentication key (if needed), and SPIs are predetermined by the administrator configuring the security association. There is no negotiation step as there is when using IKE.

Related Articles

  • SSH password authentication fails after OpenSSH upgrade
    Read More
  • Where can I download SonicWall stencils?
    Read More
  • Configuring High Availability Monitoring settings
    Read More

Categories

Firewalls
SonicWall NSA Series
Firewalls
SonicWall SuperMassive 9000 Series
Firewalls
SonicWall SuperMassive E10000 Series
Firewalls
TZ Series
not finding your answers?
Ask the Community
Chat