FOR TIPS, gUIDES & TUTORIALS

subscribe to our Youtube

GO TO YOUTUBE

14455 questions

17168 answers

28195 comments

0 members

We are migrating to our new platform at https://community.teltonika.lt. Moving forward, you can continue discussions on this new platform. This current platform will be temporarily maintained for reference purposes.
0 votes
105 views 0 comments
by anonymous
RUTX11 firmware version RUTX_R_00.07.04.2

Hello,

i am testing IPsec VPN using X.509 certificates (no PSK!) with the above mentioned router to a Palo Alto PA-820.

With IKEv1 i can establish the VPN when adding aes256 as encryption proposal, but when only using "AES 256 GCM" (regardless 8/12/16) the VPN is not building up. The palo alto log says that no matching proposal could be found. The Palo Alto is using this encryption proposal sucessfully with other VPN peers and devices!

(With Ikev2 nothing is working, but this is topic of another question/ticket opened here).

Is there an error or missing in the teltonika ipsec implementation?

Best regards.

1 Answer

0 votes
by anonymous
Hi,

Thanks for providing detailed explanations.

Currently, I am unable to confirm any of the issues and the case has been relayed to our RnD department.

Thanks for the testing.