[Swan] Suggested cipher suites in Libreswan 3.29

Kaushal Shriyan kaushalshriyan at gmail.com
Tue Jul 9 03:37:12 UTC 2019


I am running libreswan version 3.29 on CentOS 7.6 and the details are as

Linux Libreswan 3.29 (netkey) on 3.10.0-957.21.2.el7.centos.plus.x86_64
> CentOS Linux release 7.6.1810 (Core)

I have the below config.

 conn apps-tomcat-primary
>         type=tunnel
>         authby=secret
>         left=%defaultroute
>         leftid=
>         leftnexthop=%defaultroute
>         leftsubnet=
>         right=
>         rightsubnet=
>         ike=aes128-sha1;modp1024
>         phase2alg=aes128-sha1;modp1536
>         pfs=yes
>         auto=start
>         ikev2=no

I will appreciate if you can let me know the suggested cipher suites
(encryption and authentication) to be implemented as per the above
Libreswan IPsec configuration.

Thanks in advance and i look forward to hearing from you.

Best Regards,

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.libreswan.org/pipermail/swan/attachments/20190709/114df2b9/attachment.html>

More information about the Swan mailing list