IKEv2 Traffic Selector Exchange

B.

IKEv2 (Internet Key Exchange version 2) is a protocol used for setting up a secure communication channel between two peers. One of the tasks of IKEv2 is to negotiate the traffic selectors for the communication session. Traffic selectors are used to specify the type of traffic that is allowed to pass through the VPN tunnel.

When a second set of traffic selectors is negotiated between two peers using IKEv2, the IKEv2 packet that will contain details of the exchange is the IKEv2 CREATE_CHILD_SA packet.

The CREATE_CHILD_SA packet is used in Phase 2 of the IKEv2 exchange to create a new Child SA (Security Association) for a specific traffic selector. It contains details of the new Child SA, including the traffic selectors negotiated between the two peers.

The other IKEv2 packets mentioned in the answer choices are as follows:

• IKE_SA_INIT: This packet is used in Phase 1 of the IKEv2 exchange to initiate the IKE security association (SA) between the two peers.
• INFORMATIONAL: This packet is used to exchange information about an existing IKE SA, but it does not negotiate new traffic selectors.
• IKE_AUTH: This packet is used in Phase 2 of the IKEv2 exchange to authenticate the IKE SA and establish the shared secret keys used to protect the subsequent traffic between the two peers.

Therefore, the correct answer to the question is C. IKEv2 CREATE_CHILD_SA.