IPSEC Internet Key Exchange (IKE) Version 1 Detection

This script is Copyright (C) 2003-2012 Tenable Network Security, Inc.


Synopsis :

A VPN server is listening on the remote port.

Description :

The remote host seems to be enabled to do Internet Key Exchange (IKE)
version 1. This is typically indicative of a VPN server. VPN servers
are used to connect remote hosts into internal resources.

Make sure that the use of this VPN endpoint is done in accordance with
your corporate security policy.

Note that if the remote host is not configured to allow the Nessus host
to perform IKE/IPSEC negotiations, Nessus won't be able to detect the
IKE service.

Also note that this plugin does not run over IPv6.

Solution :

If this service is not needed, disable it or filter incoming traffic to
this port.

Risk factor :

None

Family: Service detection

Nessus Plugin ID: 11935 (ike_detect.nasl)

Bugtraq ID:

CVE ID: