[Openswan Users] how to enable SHA

Paul Wouters paul at xelerance.com
Thu Jun 19 09:16:26 EDT 2008


On Thu, 19 Jun 2008, Tharanga wrote:

> My service provider has enabled  3DES/SHA/DH group 5 on his CISCO PIX. now i
> need to connect to it using my openswan. i have configured  following in my
> ipsec.conf
>
> esp=3des-sha1
> ike=3des-sha1-modp1536
> keyexchange=ike

That's right. You might needs pfs=yes/no and/or aggr_mode=yes/no. Ask
the other end's sysadmin.

> is there any specific way to configure SHA on openswan or is it as same as
> SHA1 ?

sha1 is the same as sha

Paul


More information about the Users mailing list