Hi, What is the purpose of the 3rd message pair in IKE Main mode Phase1 (messages 5 and 6)? Its written its for authenticating the peers. Is it not possible to combine this wth Phase2 messages which anyway contains Hash which can be used to authenticate while using HMAC?? Is it not possible to spoof the address and authenticate anyway with the 3rd pair of messages?
Regards, Prashant