Junos OS

 View Only
last person joined: 7 days ago 

Ask questions and share experiences about Junos OS.

  • 1.  IPsec P2 - Authentication Algorithm

    Posted 08-19-2019 09:08

    Hello,

    I have to setup IPsec VPN using SHA-384 authentication method, but i can not find it listed on my junos device options.

     

    rp@AR1# set security ipsec proposal ipsec-phase2-proposal authentication-algorithm ?
    Possible completions:
    hmac-md5-96 HMAC-MD5-96 authentication algorithm
    hmac-sha-256-128 HMAC-SHA-256-128 authentication algorithm
    hmac-sha1-96 HMAC-SHA1-96 authentication algorithm

     

    SHA-384 is not listed. Is there support for this authenthication method?

     

    rp@AR1> show version
    Hostname: AR1
    Model: mx5-t
    Junos: 13.3R1.8
    JUNOS Base OS boot [13.3R1.8]
    JUNOS Base OS Software Suite [13.3R1.8]
    JUNOS Kernel Software Suite [13.3R1.8]
    JUNOS Crypto Software Suite [13.3R1.8]
    JUNOS Packet Forwarding Engine Support (MX80) [13.3R1.8]
    JUNOS Online Documentation [13.3R1.8]
    JUNOS Services Application Level Gateways [13.3R1.8]
    JUNOS Services Jflow Container package [13.3R1.8]
    JUNOS Services Stateful Firewall [13.3R1.8]
    JUNOS Services NAT [13.3R1.8]
    JUNOS Services RPM [13.3R1.8]
    JUNOS Services Crypto [13.3R1.8]
    JUNOS Services SSL [13.3R1.8]
    JUNOS Services IPSec [13.3R1.8]
    JUNOS Routing Software Suite [13.3R1.8]

     

    Thank you,

    Ramiro



  • 2.  RE: IPsec P2 - Authentication Algorithm
    Best Answer

    Posted 08-19-2019 09:39

    Hi Ramiro.

     

    It seems like SHA-384 authentication method is not available under IPSec, however, under IKE it is available.

     

    Please find the syntax from the following link - https://www.juniper.net/documentation/en_US/junos/topics/reference/configuration-statement/authentication-algorithm-edit-services-ipsec.html