Hello.
If I configured an IPsec tunnel with PSK + Auth. Why I have to define the exchange-mode (main in this case) if there isn’t a key flow in the network?
The tunnel works but the doubt that I have is conceptual.
BR
Hey. In the first phase, peers exchanging pre-shared key with Diffie-Hellman-Merkle algorithm, so MITM attack is impossible, because of math degree hiding. It’s safe. What exactly do you want to know?