[Swan] Suggested cipher suites in Libreswan 3.29

Kaushal Shriyan kaushalshriyan at gmail.com
Tue Jul 9 03:37:12 UTC 2019


Hi,

I am running libreswan version 3.29 on CentOS 7.6 and the details are as
below:-

Linux Libreswan 3.29 (netkey) on 3.10.0-957.21.2.el7.centos.plus.x86_64
> CentOS Linux release 7.6.1810 (Core)


I have the below config.

 conn apps-tomcat-primary
>         type=tunnel
>         authby=secret
>         left=%defaultroute
>         leftid=128.117.167.12
>         leftnexthop=%defaultroute
>         leftsubnet=128.117.167.12/32
>         right=126.114.94.7
>         rightsubnet=126.114.90.7/32
>         ike=aes128-sha1;modp1024
>         phase2alg=aes128-sha1;modp1536
>         pfs=yes
>         auto=start
>         ikev2=no


I will appreciate if you can let me know the suggested cipher suites
(encryption and authentication) to be implemented as per the above
Libreswan IPsec configuration.

Thanks in advance and i look forward to hearing from you.

Best Regards,

Kaushal
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.libreswan.org/pipermail/swan/attachments/20190709/114df2b9/attachment.html>


More information about the Swan mailing list