[Openswan Users] openswan with only aes encryption
foren titze
foren.titze at gmx.net
Fri Sep 24 16:09:40 CEST 2004
hello
i use openswan 1.0.7 at debain woody and it works fine with 3des.
ipsec is linked static too the kernel, no module.
now, the box is an p3 with 600 MHz and openswan uses 3des as standard, this is
too slow for me.
I have only compiled in aes in the kernel. see the picture, but ipsec don't
use it.
i have this in my ipsec.conf
conn %default
dpdaction=clear
keylife=2h
rekeymargin=9m
keyingtries=3
disablearrivalcheck=no
type=tunnel
ike=aes128-sha,aes128-md5
esp=aes128-sha1,aes128-md5
ipsec spi give me this:
esp0x37d14965 at 149.225.184.120 ESP_3DES_HMAC_MD5: dir=out src=62.92.xxx.156
iv_bits=64bits
esp0x3d358274 at 62.92.xxx.156 ESP_3DES_HMAC_MD5: dir=in src=149.225.184.120
iv_bits=64bits
why ipsec uses only 3des and not aes?
thx
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Bildschirmphoto3.jpg
Type: image/jpeg
Size: 76345 bytes
Desc: not available
Url : http://lists.openswan.org/pipermail/users/attachments/20040924/19b13a75/Bildschirmphoto3-0001.jpg
More information about the Users
mailing list