SRX

Expand all | Collapse all

Null in Hash Algorithm

Jump to Best Answer
  • 1.  Null in Hash Algorithm

    Posted 01-06-2016 07:38

    Hi,

     

    Is it possible to use as hash algorithm a value of "null" in JunOS, as in the following command of ScreenOS:

     

    set ike p2-proposal "g5-esp-aes256-no_auth-900s" group5 esp aes256 null second 900

     

    Cheers,

    Nuno



  • 2.  RE: Null in Hash Algorithm
    Best Answer

    Posted 01-06-2016 08:28

    Hi,

     

    Setting NULL encryption means actually not setting any encryption-algorithm under IPsec proposals.

     

    [edit]
    admin@srx2# show security ipsec proposal LAB
    protocol esp;
    authentication-algorithm hmac-sha1-96;
    lifetime-seconds 10000;

     

     

    Refer to the following link:

    http://rtoodtoo.net/ipsec-null-encryption-null-authentication/

     

    Note: It's not supported in FIPS mode .