diff options
| author | Ermal <eri@pfsense.org> | 2014-06-24 21:06:10 +0000 |
|---|---|---|
| committer | Ermal <eri@pfsense.org> | 2014-06-24 21:06:10 +0000 |
| commit | b0cbebeb351fbfe50cd164a87f466f91e7aea4f3 (patch) | |
| tree | 275235746a3f0673e7ff6fc76de90e202e865d0a | |
| parent | 649b6b851ceb366a0267ba5a71aa8c3df05cc5df (diff) | |
| download | pfsense-b0cbebeb351fbfe50cd164a87f466f91e7aea4f3.zip pfsense-b0cbebeb351fbfe50cd164a87f466f91e7aea4f3.tar.gz | |
Add the AESGCM and XCBC on the list of algos availble
| -rw-r--r-- | etc/inc/ipsec.inc | 17 |
1 files changed, 14 insertions, 3 deletions
diff --git a/etc/inc/ipsec.inc b/etc/inc/ipsec.inc index 2710f9a..6c1b52c 100644 --- a/etc/inc/ipsec.inc +++ b/etc/inc/ipsec.inc @@ -60,6 +60,9 @@ $peer_identifier_list = array( $p1_ealgos = array( 'aes' => array( 'name' => 'AES', 'keysel' => array( 'lo' => 128, 'hi' => 256, 'step' => 64 ) ), + 'aes128gcm' => array( 'name' => 'AES128-GCM', 'keysel' => array( 'lo' => 64, 'hi' => 128, 'step' => 32 ) ), + 'aes192gcm' => array( 'name' => 'AES192-GCM', 'keysel' => array( 'lo' => 64, 'hi' => 128, 'step' => 32 ) ), + 'aes256gcm' => array( 'name' => 'AES256-GCM', 'keysel' => array( 'lo' => 64, 'hi' => 128, 'step' => 32 ) ), 'blowfish' => array( 'name' => 'Blowfish', 'keysel' => array( 'lo' => 128, 'hi' => 256, 'step' => 64 ) ), '3des' => array( 'name' => '3DES' ), 'cast128' => array( 'name' => 'CAST128' ), @@ -67,6 +70,9 @@ $p1_ealgos = array( $p2_ealgos = array( 'aes' => array( 'name' => 'AES', 'keysel' => array( 'lo' => 128, 'hi' => 256, 'step' => 64 ) ), + 'aes128gcm' => array( 'name' => 'AES128-GCM', 'keysel' => array( 'lo' => 64, 'hi' => 128, 'step' => 32 ) ), + 'aes192gcm' => array( 'name' => 'AES192-GCM', 'keysel' => array( 'lo' => 64, 'hi' => 128, 'step' => 32 ) ), + 'aes256gcm' => array( 'name' => 'AES256-GCM', 'keysel' => array( 'lo' => 64, 'hi' => 128, 'step' => 32 ) ), 'blowfish' => array( 'name' => 'Blowfish', 'keysel' => array( 'lo' => 128, 'hi' => 256, 'step' => 64 ) ), '3des' => array( 'name' => '3DES' ), 'cast128' => array( 'name' => 'CAST128' ), @@ -77,7 +83,8 @@ $p1_halgos = array( 'sha1' => 'SHA1', 'sha256' => 'SHA256', 'sha384' => 'SHA384', - 'sha512' => 'SHA512' + 'sha512' => 'SHA512', + 'aesxcbc' => 'AES-XCBC' ); $p1_dhgroups = array( @@ -88,7 +95,10 @@ $p1_dhgroups = array( 15 => '15 (3072 bit)', 16 => '16 (4096 bit)', 17 => '17 (6144 bit)', - 18 => '18 (8192 bit)' + 18 => '18 (8192 bit)', + 22 => '22 (1024(sub 160) bit)', + 23 => '23 (2048(sub 224) bit)', + 24 => '24 (2048(sub 256) bit)' ); $p2_halgos = array( @@ -96,7 +106,8 @@ $p2_halgos = array( 'hmac_sha1' => 'SHA1', 'hmac_sha256' => 'SHA256', 'hmac_sha384' => 'SHA384', - 'hmac_sha512' => 'SHA512' + 'hmac_sha512' => 'SHA512', + 'aesxcbc' => 'AES-XCBC' ); $p1_authentication_methods = array( |
