Setting up an IPSEC VPN using OpenSwan in cloud environments Sem categoria
Share this post:

2 Comments

  • Thalles

    Thalles 17 de November de 2016

    Great tutorial. Just one thing, do you think keeping the suggestion of SHA-1 as handshake still a good idea?
    I would probably recommend going up for SHA-2 at least.

    Reply
    • Daniel Arenas

      Daniel Arenas 17 de November de 2016

      Welcome to Conviso’s Blog Thalles!
      Indeed, is a better idea to use a stronger handshake. Nevertheless, is still secure and widely used nowadays for IPSec purposes.
      See, for SHA-1 you have 2^160 key value possibilities, and its quite very unlikely to obtain the value before the communication ends.
      I will consider that and update the information 🙂
      Thank you.

      Reply

Deixe um comentário

%d bloggers like this: