Anyone deployed AES in a large scale VPN rollout? If so, had any issues, caveat's? Wondering if I should stick with 3des, or step it up a notch and go with AES. All routers are deployed with code that supports it: 12.2(13)t1. Just wondering if its ready for prime time yet.
Most of the current crypto accelerators can't handle AES
If you are the amongst the first to use a new feature, then you're really part of the extended beta test
AES has advantages over 3des, but are you more likely to be compromised because because someone cracked your crypto on the fly using high speed factoring, or because they got physical access to your router and retrieved the pre-shared keys?
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...