4. Draytek modem and Netgate Ipsec problem

Draytek modem and Netgate Ipsec problem

  • T

    Hello,

    Netgate device in the center we are using has changed from 2.2.x to 2.3.5. The Ipsec (Site to Site Vpn) connection configured between branches could not be connected after the update was made. When I check Pfsense, “PHP ERROR: Type: 1, File: /etc/inc/config.lib.inc, Line: 982, Message: Call to undefined function pfSense_fsync .DES is no longer supported, IPsec phase 2 item 'Ankara Phase 2' is being disabled.” I get a warning. We use Draytek Vigor 2820 and Vigor 2760 modem in branches. What algorithm and settings can I use to connect these devices? Thank you in advance for your help.

    0
  • Rebel Alliance Developer Netgate

    That's up to what the Draytek supports. DES has been broken for ages, it should never have been in use in a modern environment. If the Draytek supports AES-128 or better, use that. Failing that, at least use 3DES.

    0
 

Products

Applications

Support

Services

News

Resources

Company

Our Mission

As host of the pfSense open source firewall project, Netgate believes in enhancing network connectivity that maintains both security and privacy. We also believe everyone should be able to afford it.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy