topic Gaia R81.10 SNX encryption discussion in SASE and Remote Access https://community.checkpoint.com/t5/SASE-and-Remote-Access/Gaia-R81-10-SNX-encryption-discussion/m-p/149508#M6718 <P>Gaia R81.10 SNX Supported 2 Encryption methods:<BR />AES, 3DES;<BR />AES, 3DES or RC4<BR />The client want to konw which key length on AES encryption on it? AES-128?AES-192?AES-256? Can it force the SNX client to use only the AES encryption but not 3DES or RC4 cause they have higher cybersecurity requirement?</P><P>Is sk112314 solution suitable for Gaia, too?</P> Thu, 26 May 2022 08:17:43 GMT Herschel_Liang 2022-05-26T08:17:43Z Gaia R81.10 SNX encryption discussion https://community.checkpoint.com/t5/SASE-and-Remote-Access/Gaia-R81-10-SNX-encryption-discussion/m-p/149508#M6718 <P>Gaia R81.10 SNX Supported 2 Encryption methods:<BR />AES, 3DES;<BR />AES, 3DES or RC4<BR />The client want to konw which key length on AES encryption on it? AES-128?AES-192?AES-256? Can it force the SNX client to use only the AES encryption but not 3DES or RC4 cause they have higher cybersecurity requirement?</P><P>Is sk112314 solution suitable for Gaia, too?</P> Thu, 26 May 2022 08:17:43 GMT https://community.checkpoint.com/t5/SASE-and-Remote-Access/Gaia-R81-10-SNX-encryption-discussion/m-p/149508#M6718 Herschel_Liang 2022-05-26T08:17:43Z Re: Gaia R81.10 SNX encryption discussion https://community.checkpoint.com/t5/SASE-and-Remote-Access/Gaia-R81-10-SNX-encryption-discussion/m-p/149511#M6719 <P>Yes, by&nbsp;<SPAN>disabling 3DES and RC4 ciphers (as per </SPAN><A href="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk113114" target="_blank" rel="noopener">sk113114</A><SPAN> and </SPAN><A href="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk106478" target="_blank&quot;">sk106478</A><SPAN> respectively). AES-128 is best for performance, see&nbsp;<A class="cp_link sc_ellipsis" href="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk105119&amp;partition=Basic&amp;product=IPSec" target="_blank">sk105119: Best Practices - VPN Performance</A></SPAN></P> Thu, 26 May 2022 08:03:27 GMT https://community.checkpoint.com/t5/SASE-and-Remote-Access/Gaia-R81-10-SNX-encryption-discussion/m-p/149511#M6719 G_W_Albrecht 2022-05-26T08:03:27Z