In this article, you will get a full list of IPsec ciphers supported by Acreto platform.
When configuring IPsec connectivity to a Gateway, you can encounter issues during negotiation of IPsec ciphers.
Example errors in IPsec logs: NO_PROPOSAL_CHOSEN
To see recommended ciphers, display details of your Gateway on the Acreto Platform and check Recommended Ciphers in the VPN Parameters section.
An example of recommended ciphers:
This solution allows the Acreto IPSec tunnel to support all supported ciphers.
Ensure that checkbox “Allow all supported ciphers” in Gateway definition on Acreto platform is checked
Ensure your Ecosystem has been committed
On your end, select one of the supported ciphers
All combinations of allowed algorithms can be found here:
Below you can find a list of all ciphers supported by Acreto.
We consider aes128 as insecure, but we still have it supported for legacy systems, as per user request.
We support the following ciphers from the SHA-2 family:
A list of default ciphers is created based on guidelines from: