[7.900][BUG][OPEN] Site to site VPN issue using AES-256 PFS

AES 256 PFS

The session will establish (green lights) but traffic will not pass if configured using IPSec authentication algorithm:
SHA256
SHA384
SHA512

SHA1 / MD5 work OK and allow traffic to pass.
IKE authentication using SHA256/384/512 does not appear to cause an issue.

Fails on 7.504<>7.900
Not an issue on 7.504<>7.504

Not tried on any other IPSec Policies yet.

Parents

0 kbr over 15 years ago

Congratulations, You've found a bug in Version 7 ;-)

We've already fixed this one in Version 8, but Version 7 is still showing the old, broken behavior. Thus the incompatibility.

Workaround is to use SHA1 for the time being.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Reply

0 kbr over 15 years ago

Congratulations, You've found a bug in Version 7 ;-)

We've already fixed this one in Version 8, but Version 7 is still showing the old, broken behavior. Thus the incompatibility.

Workaround is to use SHA1 for the time being.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Children

No Data