Sun Microsystems, Inc.  Oracle System Handbook - ISO 7.0 May 2018 Internal/Partner Edition
   Home | Current Systems | Former STK Products | EOL Systems | Components | General Info | Search | Feedback

Asset ID: 1-71-2210298.1
Update Date:2017-05-31
Keywords:
Solution Type  Technical Instruction Sure

Solution  2210298.1 :   How To Obtain Authentication And Encryption Keys For Active/exisiting IKEv1 IPSEC Tunnels  

Related Items 
    

  • Acme Packet 6300
    •  
Related Categories 
    

  • PLA-Support>Sun Systems>CommsGBU>Session Delivery Network>SN-SND: Acme Service Provider
    •  






In this Document


Goal


Solution


References

Created from <SR 3-13477569391>


Applies to:  

Acme Packet 6300 - Version S-Cz7.2.0 to S-Cz7.3.0 [Release S-Cz7.0]
Information in this document applies to any platform.



Goal


To obtain authentication and crypto keys to decrypt active IPSEC IKEv1 tunnels on the SBC. 


Solution


To acquire the keys, carry out the following steps:

1. Go to control shell and execute "security_debug_enable" (see below).


2. Turn on IKE debug.


3. Once the tunnel is establish, go to log.iked and search for "encr=" and "auth=" and get the keys

To get into the control shell, run "control" command i.e.




# control
Password:
-> security_debug_enable 
enabling security keys debugging
value = 226859584 = 0x6f722d2
->
-> exit


 




 


 


NOTE: Enhancement Request # 25184234 is opened to have the feature considered to allow the keys to be acquired without going into "control" mode.


 


References
 <BUG:25184234> - RFE: ABILTY TO OBTAIN AUTH AND ENCRYPTION KEYS WITHOUT GOING INTO CONTROL SHELL



Attachments

This solution has no attachment


















       

Copyright © 2018 Oracle, Inc.  All rights reserved.

 Feedback