Cisco ASA

Unanswered Question
Richard Burts Wed, 09/30/2009 - 08:45
User Badges:
  • Super Silver, 17500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN

Fastethernet


From the Command Reference for the ASA, an option for the crypto isakmp policy hashing algorithm is: sha

Specifies SHA-1 (HMAC variant) as the hash algorithm for the IKE policy.

see this link for details:

http://www.cisco.com/en/US/docs/security/asa/asa82/command/reference/c5.html#wp2228816


for encrypting traffic for IPSec there is support for AES-256:

esp-aes-256 to use AES with a 256-bit key.

see this link for details:

http://www.cisco.com/en/US/docs/security/asa/asa82/command/reference/c5.html#wp2199475


HTH


Rick

Richard Burts Thu, 10/01/2009 - 03:55
User Badges:
  • Super Silver, 17500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN

Fastethernet


I am not aware of any option currently available to specify SHA-2 as the hashing algorithm on the ASA and my review of the command reference does not show any option for that.


HTH


Rick

Actions

This Discussion