NeoAnd/netbox
1
0
Fork 0
mirror of https://github.com/netbox-community/netbox.git synced 2025-12-18 11:22:25 -06:00
Code Issues Actions 10 Packages Projects Releases Wiki Activity

Fixes #14499: Relax requirements for encryption/auth algorithms on IKE & IPSec proposals

Browse Source
This commit is contained in:
Jeremy Stretch
2023-12-19 11:18:26 -05:00
parent 67c39b9ede
commit 4b6bc90f73
4 changed files with 24 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
docs/models/vpn/ikeproposal.md
View File

@@ -28,7 +28,7 @@ The protocol employed for data encryption. Options include DES, 3DES, and variou
### Authentication Algorithm
The mechanism employed to ensure data integrity. Options include MD5 and SHA HMAC implementations.
The mechanism employed to ensure data integrity. Options include MD5 and SHA HMAC implementations. Specifying an authentication algorithm is optional, as some encryption algorithms (e.g. AES-GCM) provide authentication natively.
### Group

6
docs/models/vpn/ipsecproposal.md
View File

@@ -12,10 +12,16 @@ The unique user-assigned name for the proposal.
The protocol employed for data encryption. Options include DES, 3DES, and various flavors of AES.
!!! note
If an encryption algorithm is not specified, an authentication algorithm must be specified.
### Authentication Algorithm
The mechanism employed to ensure data integrity. Options include MD5 and SHA HMAC implementations.
!!! note
If an authentication algorithm is not specified, an encryption algorithm must be specified.
### SA Lifetime (Seconds)
The maximum amount of time for which the security association (SA) may be active, in seconds.