I have a user device (laptop) on the client side of my architecture running a vpn client application that will go through the internet (unsecure network) to a vpn gateway on the infrastructure side that also contains a Certificate Authority and Administration device and other laptop. What I am trying to understand is how the session keys are generated and passed to the VPN device. Any help would be greatly appreciated. Thanks in advance!!!