[Openswan Users] phase 2 to AES 128 MD5
Omar Armas
oarmas at mpsnet.net.mx
Tue Dec 7 03:44:25 CET 2004
I've been asked to set for phase 2 the following settings: AES 128 MD5. Keeping phase 1 with 3DES and MD5.
If remote tunnel uses 3DES and MD5 it works, but when using AES 128 and
MD5 with default config it dies.
How can I force only phase 2 connection to use AES 128 MD5?
This is my connection settings:
conn sonicwall
leftsubnet=192.168.16.0/24
type=tunnel
keyexchange=ike
ikelifetime=240m
keylife=60m
pfs=yes
compress=no
authby=secret
right=148.xxx.xx.x
rightsubnet=150.xxx.xxx.xxx/32
auto=add
Omar
More information about the Users
mailing list