Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations SkipVought on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Changing VPN Encryption Levels

Status
Not open for further replies.
bubarooni

bubarooni

Technical User
May 13, 2001
506
0
0
US
I need to change the encryption level on a PIX 506, v 6.3(4).

Can I do this by changing my transform set:

crypto ipsec transform-set s2s1trans esp-des esp-md5-hmac

to:

crypto ipsec transform-set s2s1trans esp-3des esp-md5-hmac

on the PIX?

Thanks
 
Sort by date Sort by votes
that looks right - you need to make sure that you have a 3DES license as I'm sure that Cisco charge extra for that - and obviously modify the client profiles as well.

Dave
 
Upvote 0 Downvote
Excellent! I just couldn't believe it would be that easy. I did get a 'key' from cisco that upgraded the license to 3DES/AES. I was a little worried about trying it, since I don't have a test environment, it has to be done in production.

Thanks
 
Upvote 0 Downvote
Cisco doesn't charge for the 3DES key any more.
 
Upvote 0 Downvote
Yeah, I just sent a request and they sent me back a key. It says it's 3DES/AES enabled now. Could I use the AES encryption as well then?
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

stanlyn
  • Question
Uncoupled Disk Encryption
Replies
0
Views
167
stanlyn
stanlyn
intel233
  • Locked
  • Question
Cisco ASA - VPN Question
Replies
6
Views
143
intel233
intel233
ISDPCMAN
  • Locked
  • Question
RDP fails over VPN
Replies
1
Views
67
gkittelson
gkittelson
Shmid
  • Locked
  • Question
Restricting Sonicwall SSL-VPN users for WAN access
Replies
7
Views
165
Shmid
Shmid
WhosYourDiffie
  • Locked
  • Question
Cisco ASA 5506 VPN for Avaya Phones
Replies
0
Views
51
WhosYourDiffie
WhosYourDiffie

Part and Inventory Search

Sponsor

Back
Top