Is it possible to determine what the pre-shared key is for a S2S VPN? I need to move some tunnels to a new UTM220 and it would be nice to use the existing keys. Thanks!
There are other KnowledgeBase articles with descriptions for connecting to Cisco and other IPsec VPNs.
Yes, this is about Security. There are new password/PSK-breaking techniques and it's possible to align a lot of CPUs in the Amazon cloud for a relatively small amount of money. If your organization has any secrets that it wants to protect, cert-based VPNs are a must. Really, it's not much more than exchanging cert+CA instead of PSKs. Even RSA-key-based VPNs are much, much safer than PSKs.
There are other KnowledgeBase articles with descriptions for connecting to Cisco and other IPsec VPNs.
Yes, this is about Security. There are new password/PSK-breaking techniques and it's possible to align a lot of CPUs in the Amazon cloud for a relatively small amount of money. If your organization has any secrets that it wants to protect, cert-based VPNs are a must. Really, it's not much more than exchanging cert+CA instead of PSKs. Even RSA-key-based VPNs are much, much safer than PSKs.
