4. Draytek modem and Netgate Ipsec problem

Draytek modem and Netgate Ipsec problem

  • T

    Hello,

    Netgate device in the center we are using has changed from 2.2.x to 2.3.5. The Ipsec (Site to Site Vpn) connection configured between branches could not be connected after the update was made. When I check Pfsense, “PHP ERROR: Type: 1, File: /etc/inc/config.lib.inc, Line: 982, Message: Call to undefined function pfSense_fsync .DES is no longer supported, IPsec phase 2 item 'Ankara Phase 2' is being disabled.” I get a warning. We use Draytek Vigor 2820 and Vigor 2760 modem in branches. What algorithm and settings can I use to connect these devices? Thank you in advance for your help.

    0
  • Rebel Alliance Developer Netgate

    That's up to what the Draytek supports. DES has been broken for ages, it should never have been in use in a modern environment. If the Draytek supports AES-128 or better, use that. Failing that, at least use 3DES.

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy