The remote Internet Key Exchange (IKE) version 1 service seems to support Aggressive Mode with Pre-Shared key (PSK) authentication. Such a configuration could allow an attacker to capture and crack the PSK of a VPN gateway and gain unauthorized access to private networks.
Jul 21, 2017 IKE Using Pre-Shared Secret When using IKE with a pre-shared secret, two VPN devices establish encryption and authentication keys using a shared secret. After the SA expires, the SonicWALL appliances reestablishes an SA using the same shared secret, but does not use the same security and authentication keys. IKEv2 Deployments > Pre-shared-key Authentication with
What is a good preshared key length - Cisco Community
Configuring an IKE Policy - TechLibrary - Juniper Networks Configuring an IKE Policy for Preshared Keys, Example: Configuring an IKE Policy IPSec Pre-shared Key (PSK) Generator - IFM Or you can use serial numbers, MAC addresses, or you could call each other and exchange two colours, favourite sports teams, etc. Note that whatever one party enters as "Key 1" the other party must enter as "Key 1", and whatever one party enters as "Key 2" the other party must also enter as "Key 2".
How to Add a New Pre-Shared Key (IPsec and IKE
In IKE Aggressive mode the authentication hash based on a preshared key (PSK) is transmitted as response to the initial packet of a vpn client that wants to establish an … 2 IPSec Site to Site VPN using Pre shared Key explained