pix 501 to blowfish

[nd4spdsho]

Need some help from the experts here....Trying to make a pix 501 talk to another VPN running redhat8 with a custom compiled kernel. They're using blowfish with at least 128 bit, possibly 256 bit encryption... We have the encryption key and all the other necessary information, what's the best way to make the two boxes talk?

TIA

 

[chicocouk]

PIX currently supports DES, 3DES and AES as encryption algorythms. It does not support blowfish. You'll need to configure the Red Hat box to use one of those rather than blowfish.

CCNA, MCSE, Cisco Firewall specialist, VPN specialist, wannabe CCSP

 

[bytehd]

IPSec only uses DES,3DES and AES

http://www.insyncva.com

 

[chicocouk]

IPSec is an open framework that can support various encryption methods. Currently IPSec on a PIX only uses DES, 3DES and AES, but that's not to say IPSec can't and won't support other encryption schemes on other platforms either now or in the future.

Previously IPSec vpns couldn't use AES, but they now do. If someone develops a better encryption scheme than AES next week sooner or later IPSec vpns would use it.

CCNA, MCSE, Cisco Firewall specialist, VPN specialist, wannabe CCSP