This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Ray_Hugh
Participant
‎2017-12-06 03:03 PM

VPN encryption method

I'm not sure this is the right group, but it's the closest I can find:

Is SHA256 actually supported on R75.20?  I can see the tunnel is established using SHA256, but the traffic seems to be trying to go through with SHA1, and failing because there are no valid SAs.

0 Kudos
2 Replies
PhoneBoy
Admin
Admin
‎2017-12-06 05:45 PM

This appears to be a known bug in R75.20 per this SK: Traffic does not pass over Site-to-Site VPN tunnel when choosing SHA-256 for IKE Phase 2 negotiation 

You can try asking TAC for the appropriate hotfix, but I highly recommend upgrading to a supported release as R75.20 has been End of Support for quite some time.

Ray_Hugh
Participant
‎2017-12-06 10:26 PM

Thank you for the confirmation.  We are planning to upgrade this firewall.  Hopefully, this will give it some urgency.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events
    Top