Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

ESP-3des and DES-CBC

Hi There

I am configuring a site to site VPN with a ASA 5500 with a non cisco firewall

The encryption i used on the ASA 5500 is esp-3des esp-sha-hmac

The encryption i can find on the non Cisco firewall is only DES-CBC

I am just wondering if both are the same or identical?

1 REPLY
Gold

Re: ESP-3des and DES-CBC

Hi DES has two modes ECB mode (Electronic CodeBook)and CBC mode (Cipher Block Chaining) IPSEC uses CBC mode but CBC mode is used by 3DES and also 3DES

Because non-cisco firewall offers DES-CBC I suppose that is simple DES (not 3DES) so you should have esp-des on ASA too...

Try if is possible to set non-cisco to 3DES-CBC it should be more secure than simple DES

M.

Hope that helps, rate if it does

1449
Views
3
Helpful
1
Replies
CreatePlease to create content