IPsec: Does cOS Core support Pseudo-Random Functions (PRFs) according to RFC-4868?Last modified on 14 Dec, 2022. Revision 6
|Up to date for||
cOS Core 14.00.7
cOS Core 10.21.xx
We have a system that uses Pseudo-Random Functions (PRFs) by default on all our IPsec tunnels and we cannot change this option to avoid it affecting all configured IPsec tunnels. Do Clavister support PRF in some way?
Yes, with the introduction of SHA-256 and SHA-512 in version 10.21 we also support PRF. Please note that only these two integrity algorithms support PRF.
Support for SHA-384 was added in version 13.00.01 and up. Now there are three integrity algorithms available that support PRF.
11 Jan, 2023 ipsec core vpn
23 Aug, 2022 core certificate oneconnect ipsec vpn
23 Nov, 2022 core ipsec
22 Mar, 2021 core ipsec routing
17 Jun, 2021 core ipsec routing
14 Apr, 2021 core license ipsec
8 Sep, 2020 core ipsec rules access
27 Jan, 2023 ipsec core windows vpn l2tp
1 Dec, 2022 ipsec core
16 Sep, 2020 vpn ipsec ikev2 windows howto dh
7 Dec, 2022 ipsec ike troubleshoot core
23 Aug, 2022 core ipsec license memory
23 Aug, 2022 core connections ipsec memory
2 Dec, 2022 dhcp ipsec core