Back to list

iked(8): Internet Key Exchange version 2 (IKEv2) in OpenBSD

Reyk Floeter (
Author Description:
Reyk Floeter is a developer in the OpenBSD project where he is focused on networking in kernel and user-land. He wrote software like relayd(8), snmpd(8), the trunk(8) driver and, some time ago, the OpenBSD version of the ath(4) driver.

He is the CTO and Co-Founder of .vantronix | secure systems GmbH in Hannover, Germany. .vantronix is a vendor of high-end security appliances with international customers in the corporate and enterprise market and an HP AllianceONE Select partner. .vantronix provides Firewalls, Routers, Load Balancers, VPN, IPv6 Gateways, and Anti-SPAM solutions based on OpenBSD.
OpenBSD 4.8 will include a new daemon iked(8) and its control tool ikectl(8). iked is an Internet Key Exchange (IKEv2) daemon which performs mutual authentication and which establishes and maintains IPsec flows and security associations (SAs) between the two peers.

The IKEv2 protocol is defined in RFC 4306, which combines and updates the previous standards: ISAKMP/Oakley (RFC 2408), IKE (RFC 2409), and the Internet DOI (RFC 2407). iked only supports the IKEv2 protocol; support for ISAKMP/Oakley and IKEv1 is provided by isakmpd(8).
Target Audience:
Target OS:
Paper Download:
View PDF
Back to list

EuroBSDCon Organizer

see all Sponsors

©2015 · All rights reserved. Imprint