News: This forum is now permanently frozen.
linktree m0n0wall Forum  >  m0n0wall Support (English)  >  VPN
linktree Topic: IPsec using AES-256
Pages: [1]
Topic: IPsec using AES-256  (Read 3939 times)
« on: June 09, 2010, 14:57:40 »
hein *
Posts: 4
Hello,

I have a client who wants to use ipsec with aes-256 encryption. As I cannot define the key lenght in monowall this does not work. I only can define AES. If we use AES-128 then everything is fine. But the client insist using AES-256.

How can I manage this using monowall. I'm using the latest version (I think 1.3) on an alix board.

Thanks for help

Regards
Hein
« Reply #1 on: June 09, 2010, 23:22:05 »
rpsmith ***
Posts: 113
even 128 bit is overkill.  256 is total overkill.  If they insist on 256, you will need hardware that can handle the extra overhead and another OS like pfSense.  Unless your client is dealing with Top Secret material, 128-bit should be more than adequate.

Roy...

for more information on 128-Bit Versus 256-Bit AES Encryption:

http://www.seagate.com/staticfiles/docs/pdf/whitepaper/tp596_128-bit_versus_256_bit.pdf
« Last Edit: June 10, 2010, 06:36:02 by rpsmith »
 
Pages: [1]
 
 
Powered by SMF 1.1.20 | SMF © 2013, Simple Machines