This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
ABOUT CHECKMATES & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Vilius
Explorer
‎2023-03-23 02:09 AM
Jump to solution

AES-GCM support - IPsec Phase1

Hello,

Checking R80.40 or R81 VPN administration guide i only see AES-128/256 for Site-to-site IPsec Phase 1 configuration. I believe that implies CBC. How about support for AES-256GCM in Phase1? Is it possible to support it by upgrading to some specific version or by enabling support somewhere under the hood?

I am receiving requests to negotiate GCM for both phases and actually one of the S2S remote party says they are stopping CBC support for IPSec. 

 

Thanks

 

0 Kudos
1 Solution

Accepted Solutions
_Val_
Admin
Admin
‎2023-03-23 02:29 AM
Jump to solution

At this point, we only support AES-GCM ciphers with Phase 2. If you need then with Phase 1, please open an RFE.

View solution in original post

1 Reply
_Val_
Admin
Admin
‎2023-03-23 02:29 AM
Jump to solution

At this point, we only support AES-GCM ciphers with Phase 2. If you need then with Phase 1, please open an RFE.

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫