> From a practical perspective, the rule syntax is > very subtle. > encr_algs aes encr_auth_algs sha1 > ill use ESP with AES encryption and SHA1 > authentication. > > encr_algs aes auth_algs sha1 > ses ESP with AES encryption, AH with SHA1 > authentication, incompatible > with NAT. > > It's a common nuance that people sometimes miss.
Thank you for the heads up. The thing that concerns me is to find out whether the above works in Solaris 10, or is in OpenSolaris only. This message posted from opensolaris.org
