Re: [IPsec] How long does an IKEv1 session take to complete?
Dan McDonald <danmcd@sun.com> Wed, 18 November 2009 16:28 UTC
Return-Path: <danmcd@sun.com>
X-Original-To: ipsec@core3.amsl.com
Delivered-To: ipsec@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id E42463A6961 for <ipsec@core3.amsl.com>; Wed, 18 Nov 2009 08:28:34 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.046
X-Spam-Level:
X-Spam-Status: No, score=-6.046 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HELO_MISMATCH_COM=0.553, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id St5Ar7mMRESV for <ipsec@core3.amsl.com>; Wed, 18 Nov 2009 08:28:34 -0800 (PST)
Received: from brmea-mail-2.sun.com (brmea-mail-2.Sun.COM [192.18.98.43]) by core3.amsl.com (Postfix) with ESMTP id 2BDAB3A694F for <ipsec@ietf.org>; Wed, 18 Nov 2009 08:28:33 -0800 (PST)
Received: from dm-east-01.east.sun.com ([129.148.9.192]) by brmea-mail-2.sun.com (8.13.6+Sun/8.12.9) with ESMTP id nAIGSVUg013856; Wed, 18 Nov 2009 16:28:31 GMT
Received: from kebe.East.Sun.COM (kebe.East.Sun.COM [129.148.174.48]) by dm-east-01.east.sun.com (8.13.8+Sun/8.13.8/ENSMAIL,v2.4) with ESMTP id nAIGSVPR016492; Wed, 18 Nov 2009 11:28:31 -0500 (EST)
Received: from kebe.East.Sun.COM (localhost [127.0.0.1]) by kebe.East.Sun.COM (8.14.3+Sun/8.14.3) with ESMTP id nAIGRrL2002824; Wed, 18 Nov 2009 11:27:53 -0500 (EST)
Received: (from danmcd@localhost) by kebe.East.Sun.COM (8.14.3+Sun/8.14.3/Submit) id nAIGRoGH002823; Wed, 18 Nov 2009 11:27:50 -0500 (EST)
X-Authentication-Warning: kebe.East.Sun.COM: danmcd set sender to danmcd@sun.com using -f
Date: Wed, 18 Nov 2009 11:27:50 -0500
From: Dan McDonald <danmcd@sun.com>
To: hyla81420@mypacks.net
Message-ID: <20091118162750.GB1178@kebe.East.Sun.COM>
References: <32855890.1258525905711.JavaMail.root@elwamui-norfolk.atl.sa.earthlink.net>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <32855890.1258525905711.JavaMail.root@elwamui-norfolk.atl.sa.earthlink.net>
Organization: Sun Microsystems, Inc. - Solaris Networking & Security
User-Agent: Mutt/1.5.20 (2009-06-14)
Cc: ipsec@ietf.org
Subject: Re: [IPsec] How long does an IKEv1 session take to complete?
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipsec>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 18 Nov 2009 16:28:35 -0000
On Tue, Nov 17, 2009 at 11:31:45PM -0700, hyla81420@mypacks.net wrote: <SNIP!> > Greetings. Is there any data out there that quantifies how long a typical > IKEv1 session (main mode and/or aggressive mode) take to complete? I don't think anyone's done a thorough survey of implementations or parameters they use. If anyone has, or knows of such a survey, they should really share with this list. A LOT depends on what you use for your Oakley Group, your authentication method (and the certificate key size in the case of certificates), and, of course, the hardware upon which you run it. There's a lot of combinations there! Dan
- [IPsec] How long does an IKEv1 session take to co… hyla81420
- Re: [IPsec] How long does an IKEv1 session take t… Dan McDonald
- Re: [IPsec] How long does an IKEv1 session take t… Gregory Lebovitz
- Re: [IPsec] How long does an IKEv1 session take t… Dan McDonald
- Re: [IPsec] How long does an IKEv1 session take t… Yoav Nir
- Re: [IPsec] How long does an IKEv1 session take t… hyla81420