On Wed, Aug 21, 2002 at 12:20:27PM +0200, Marcel Weber wrote: > Hash: SHA1 > > Hi > > Does anybody know if there are any news concerning freeswan and > Watchguard Firebox 2 interoperability? Some time ago I read that the two > would not work together, as Watchguard does not use triple DES during > the negotiation phase. Is there a patch around for freeswan? > > Marcel
I would guess not. If Watchguard doesn't support 3DES, then it sounds like it will support just DES. FreeSwan has a policy of remaining non-compliant to the standards in regards to supporting DES (they don't support it), as they believe that the inclusion of single DES in the IPSec standards weakeness IPSec too much. So you might have to do a fair bit of hunting around for a patch to FreeSwan so that it supports single DES. Geoff
