I have come across a doubt on how the IPSec tunnel actually works.
I do not want the commands and their direct meaning, I would like to hear it in simple lay mans words.
For example the IKE phase 1 creates a secure channel for passing info using asymmetric keys(DH group) then what is the use of the command encryption DES or 3 DES or AES in the phase 1?
If we are using encryption in IKE phase 1 then why are we using it in transform set esp-des esp-sha-hmac, i mean the des or whatever here.
what is the difference between shared secret key and private key in this concept?
I mean like right from the start of the tunnel establishment do we talk with the other end with encryption(symmetric) or only in the data transfer phase will we talk about of it?
Please could some one elaborate on the bits and pieces of it.
May be i could not put my actual doubt inhere but the answers to my query's can actually clear them all.