On Wed, Nov 12, 2008 at 07:13:05PM +0100, Hans-Joerg Hoexer wrote:
> Support for specifying aes key sizes was added february 2008, thus 4.2
> does not provide this.
Ah, thought so. Well, I got it working by reverting back to using the
old isakmpd.conf method.
Thanks for your time.
-- joe.
Fi
Support for specifying aes key sizes was added february 2008, thus 4.2
does not provide this.
On Wed, Nov 12, 2008 at 03:17:17PM +, Joe Warren-Meeks wrote:
> On Wed, Nov 12, 2008 at 02:35:35PM +0100, Claer wrote:
>
> Hey there,
>
> OK, so I've switched to ipsec.conf and it is alot easier!
>
On Wed, Nov 12, 2008 at 02:35:35PM +0100, Claer wrote:
Hey there,
OK, so I've switched to ipsec.conf and it is alot easier!
However, I'm still struggling to use aes 256.
I have the following:
ike esp from 195.24.xxx.x/25 to 62.232.yyy.y/27 \
local 195.24.aaa.aa peer 62.232.bbb.bbb \
main auth
On Wed, Nov 12, 2008 at 02:35:35PM +0100, Claer wrote:
Hey there,
> I don't know if your isakmpd.conf is good or not. The general
> part seems good. But I'm wondering why you are not using the new
> configuration file (/etc/ipsec.conf) It's much easier to use and to
> maintain over time. For you
On Wed, Nov 12 2008 at 18:13, Joe Warren-Meeks wrote:
> Hey guys,
Hi,
> I'm struggling to get isakpmd to talk to a checkpoint firewall
>
> I need the following parameters
>
> General IKE Properties = AES-256 with SHA1
> IKE Phase 1 SA = Group2 (1024 bit)
> IKE Phase 1 SA renegotiation = 1440
> I
Hey guys,
I'm struggling to get isakpmd to talk to a checkpoint firewall
I need the following parameters
General IKE Properties = AES-256 with SHA1
IKE Phase 1 SA = Group2 (1024 bit)
IKE Phase 1 SA renegotiation = 1440
IKE Phase 2 SA renegotiation = 3600
The network layout looks as follows:
Ou
6 matches
Mail list logo
