> From a practical perspective, the rule syntax is > very subtle. > encr_algs aes encr_auth_algs sha1 > ill use ESP with AES encryption and SHA1 > authentication. > > encr_algs aes auth_algs sha1 > ses ESP with AES encryption, AH with SHA1 > authentication, incompatible > with NAT. > > It's a common nuance that people sometimes miss.
The changes are in place. I'm about to reboot, and my link will drop in a few secs. But before the link drops, I'd like to know: which provides for better / stronger encryption: AES or 3DES? This message posted from opensolaris.org
