This is a MIB Module for configuring and viewing IKE 
parameters and policies. 

Acronyms
The following acronyms are used in this document:

IPsec:      Secure IP Protocol

VPN:        Virtual Private Network

ISAKMP:     Internet Security Association and Key Exchange
            Protocol

IKE:        Internet Key Exchange Protocol

DOI:        Domain of Interpretation (of the attributes
            of IKE protocol in the context of a specific 
            Phase-2 protocol).

SA:         Security Association
            (ref: rfc2408).

SPI:        Security Parameter Index is the pointer or
            identifier used in accessing SA attributes
            (ref: rfc2408).

MM:         Main Mode - the process of setting up
            a Phase 1 SA to secure the exchanges
            required to setup Phase 2 SAs

Phase 1 Tunnel:
            An ISAKMP SA can be regarded as representing
            a flow of ISAKMP/IKE traffic. Hence an ISAKMP
            is referred to as a 'Phase 1 Tunnel' in this
            document. 

Phase 2 Tunnel:
            A Phase 2 Tunnel is an instance of a
            non-ISAKMP SA bundle in which all the SA
            share the same proxy identifiers (IDii,IDir)
            and protect the same stream of application
            traffic.
            Note that a Phase 2 tunnel may comprise one
            SA bundle at any given point of time, but 
            the SA bundle changes with time due to 
            key refresh.


History of the MIB
This MIB was originally written as CISCO-IPSEC-MIB
which combined the configuration of IKE and IPsec
protocols into a single MIB.