Re: IPSec VPN and Watchguard Firebox 2

To: debian-security@lists.debian.org
Subject: Re: IPSec VPN and Watchguard Firebox 2
From: Geoff Crompton <geoff.crompton@bjhcontrols.com.au>
Date: Thu, 22 Aug 2002 09:16:20 +1000
Message-id: <[🔎] 20020821231620.GA1215@lovelace>
Mail-followup-to: debian-security@lists.debian.org
In-reply-to: <[🔎] 9CFAF608-B4EF-11D6-A7BA-00050285B655@ncpro.com>
References: <[🔎] YVRODB9B6E071U4WEA82HC6451YTOI.3d63366a@robi_nt> <[🔎] 9CFAF608-B4EF-11D6-A7BA-00050285B655@ncpro.com>

On Wed, Aug 21, 2002 at 12:20:27PM +0200, Marcel Weber wrote:
> Hash: SHA1
> 
> Hi
> 
> Does anybody know if there are any news concerning freeswan and 
> Watchguard Firebox 2 interoperability? Some time ago I read that the two 
> would not work together, as Watchguard does  not use triple DES during 
> the negotiation phase. Is there a patch around for freeswan?
> 
> Marcel

  I would guess not. If Watchguard doesn't support 3DES, then it sounds
  like it will support just DES. FreeSwan has a policy of remaining
  non-compliant to the standards in regards to supporting DES (they
  don't support it), as they believe that the inclusion of
  single DES in the IPSec standards weakeness IPSec too much. So you
  might have to do a fair bit of hunting around for a patch to FreeSwan
  so that it supports single DES.

  Geoff

Reply to:

References:
- Re: RE: IPSec VPN
  - From: Rcca <rcca@laurel.hu>
- Re: IPSec VPN and Watchguard Firebox 2
  - From: Marcel Weber <mmweber@ncpro.com>

Prev by Date: ethereal 0.9.6?
Next by Date: VPN between 2 dynamic ip's ?
Previous by thread: Re: IPSec VPN and Watchguard Firebox 2
Next by thread: Re: IPSec VPN and Watchguard Firebox 2
Index(es):
- Date
- Thread