Cisco ASA - SHA vs SHA1

Unanswered Question
Nov 7th, 2010

I am using a Cisco ASA5510 IOS 8.2(3), I will be setting up an L2L (Site to Site VPN) with a non cisco device which supports SHA1 or MD5.

In reviewing the hash options using ASDM manager I noticed that there are only 2 options - SHA or MD5.  I found one previous article that suggests using

SHA on my end with SHA1 on the peer end will work?

Can someone confirm if indeed this is the case? and are there any other hashing alternatives on the ASA 5510 other than SHA or MD5 available?

Thanks

I have this problem too.
1 vote
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 3.5 (2 ratings)
Federico Coto F... Sun, 11/07/2010 - 11:28

Hi,

The hashing algorithm availables for phase 1 and phase 2 are MD5 and SHA/SHA-1

So, choosing SHA on the ASA side will work with SHA-1 on the other side.

Federico.

Entuitesi Sun, 11/07/2010 - 13:00

Thanks for the response! I suspected that this was indeed the case. Thanks for verifying.

Actions

Login or Register to take actions

This Discussion

Posted November 7, 2010 at 6:01 AM
Stats:
Replies:2 Overall Rating:3.5
Views:4811 Votes:1
Shares:0
Tags: No tags.
 

Discussions Leaderboard

Rank Username Points
1
Federico Coto F...
1,913
2
Jouni Forss
1,876
3
Marvin Rhoads
1,625
4
Karsten Iwen
1,109
5
Jon Marshall
688
Rank Username Points
Adeolu Owokade
35
Marvin Rhoads
30
rizwanr74
20
Marius Gunnerud
10
johnlloyd_13
5