Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
513
Views
0
Helpful
4
Replies

EzVPN using AES_256

gtickle
Level 1
Level 1

‎09-03-2005 09:56 PM

I can not get ezvpn to worl with aes 256 it works with 3des and aes 128. Has any been able to to get ezvpn to work with AES 256?

Labels:
0 Helpful
4 Replies 4

vkapoor5
Level 5
Level 5

‎09-08-2005 01:09 PM

check if your image supports AES encryption.

0 Helpful

asp13
Level 1
Level 1

‎09-13-2005 02:00 AM

Which device do you use?

I have the same situation. My ezVPN server is VPN Concentrator and ezVPN Remote - IOS 12.4.

I suppose the problem is in IOS because 'sh crypto ipsec sa' shows there is no aes-256 or eas-192 transform sets.

I've open the case but still got no response form TAC.

0 Helpful

gtickle
Level 1
Level 1
In response to asp13

‎09-13-2005 05:26 AM

Cisco 2821 as EzVPN server 2801 as remote. I tried 12.4 and 12.3(14) I cound not get it to work with AES 256 but it will work with AES 128. I just switched everything to DMVPN it works great.

0 Helpful

asp13
Level 1
Level 1
In response to gtickle

‎09-13-2005 06:39 AM

Yes, as i said hardcoded transform sets in IOS ezVPN Remote code doesn't have an aes-256 proposal. So when you switched to DMVPN you made statical transform set.

I've got a response from TAC which state that it's a "design decision". A bit silly decision to my mind, it looks like a trivial bug.

Lets hope this we'll be corrected in future releases of IOS.

0 Helpful
Customers Also Viewed These Support Documents