Cisco ASA - SHA vs SHA1

Unanswered Question
Nov 7th, 2010
User Badges:

I am using a Cisco ASA5510 IOS 8.2(3), I will be setting up an L2L (Site to Site VPN) with a non cisco device which supports SHA1 or MD5.


In reviewing the hash options using ASDM manager I noticed that there are only 2 options - SHA or MD5.  I found one previous article that suggests using

SHA on my end with SHA1 on the peer end will work?


Can someone confirm if indeed this is the case? and are there any other hashing alternatives on the ASA 5510 other than SHA or MD5 available?


Thanks

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 3.5 (2 ratings)
Loading.
Federico Coto F... Sun, 11/07/2010 - 11:28
User Badges:
  • Green, 3000 points or more

Hi,


The hashing algorithm availables for phase 1 and phase 2 are MD5 and SHA/SHA-1

So, choosing SHA on the ASA side will work with SHA-1 on the other side.


Federico.

Entuitesi Sun, 11/07/2010 - 13:00
User Badges:

Thanks for the response! I suspected that this was indeed the case. Thanks for verifying.

Actions

This Discussion