Eval Contact

Have any questions?

1-877-991-1809
[email protected]
Partner Portal
Eval Contact

What Encryption Methods are Available for IPsec Tunnels?

Skip to main content
Print

What Encryption Methods are Available for IPsec Tunnels?

Please see the below table for all Encryption Modes, Integrity Algorithms, and DH Groups available for IPsec tunnels:

Type Available Methods
Encryption Mode
  • 168 bit 3DES-EDE-CBC
  • 128 bit Blowfish-CBC
  • 192 bit Blowfish-CBC
  • 256 bit Blowfish-CBC
  • 128 bit AES-CBC
  • 192 bit AES-CBC
  • 256 bit AES-CBC
  • 128 bit AES-COUNTER
  • 192 bit AES-COUNTER
  • 256 bit AES-COUNTER
  • 128 bit AES-CCM with 64 bit ICV
  • 192 bit AES-CCM with 64 bit ICV
  • 256 bit AES-CCM with 64 bit ICV
  • 128 bit AES-CCM with 96 bit ICV
  • 192 bit AES-CCM with 96 bit ICV
  • 256 bit AES-CCM with 96 bit ICV
  • 128 bit AES-CCM with 128 bit ICV
  • 192 bit AES-CCM with 128 bit ICV
  • 256 bit AES-CCM with 128 bit ICV
  • 128 bit AES-GCM with 64 bit ICV
  • 192 bit AES-GCM with 64 bit ICV
  • 256 bit AES-GCM with 64 bit ICV
  • 128 bit AES-GCM with 96 bit ICV
  • 192 bit AES-GCM with 96 bit ICV
  • 256 bit AES-GCM with 96 bit ICV
  • 128 bit AES-GCM with 128 bit ICV
  • 192 bit AES-GCM with 128 bit ICV
  • 256 bit AES-GCM with 128 bit ICV
  • Null Encryption
  • Null Encryption with 128 bit AES-GMAC
  • Null Encryption with 192 bit AES-GMAC
  • Null Encryption with 256 bit AES-GMAC
  • 128 bit Camellia-CBC
  • 192 bit Camellia-CBC
  • 256 bit Camellia-CBC
  • 128 bit CAST-CBC
  • 128 bit Camellia-COUNTER
  • 192 bit Camellia-COUNTER
  • 256 bit Camellia-COUNTER
  • 128 bit Camellia-CCM with 64 bit ICV
  • 192 bit Camellia-CCM with 64 bit ICV
  • 256 bit Camellia-CCM with 64 bit ICV
  • 128 bit Camellia-CCM with 96 bit ICV
  • 192 bit Camellia-CCM with 96 bit ICV
  • 256 bit Camellia-CCM with 96 bit ICV
  • 128 bit Camellia-CCM with 128 bit ICV
  • 192 bit Camellia-CCM with 128 bit ICV
  • 256 bit Camellia-CCM with 128 bit ICV
  • 256 bit ChaCha20/Poly1305 with 128 bit ICV
Integrity Algorithm
  • 96-bit MD5 HMAC
  • 128-bit MD5 HMAC
  • 96-bit SHA1 HMAC
  • 160-bit SHA1_160 HMAC
  • 96-bit AES XCBC
  • 96-bit AES CMAC
  • 128-bit AES-GMAC
  • 192-bit AES-GMAC
  • 256-bit AES-GMAC
  • 128-bit SHA2_256 HMAC
  • 192-bit SHA2_384 HMAC
  • 256-bit SHA2_512 HMAC
  • 96-bit SHA2_256_96 HMAC
  • 96-bit MD5 PRF
  • 96-bit SHA1 PRF
  • 96-bit AES XCBC PRF
  • 96-bit AES CMAC PRF
  • 128-bit SHA2_256 PRF
  • 192-bit SHA2_384 PRF
  • 256-bit SHA2_512 PRF
DH Group
  • 768-bit group
  • 1024-bit group
  • 1536-bit group
  • 2048-bit group
  • 3072-bit group
  • 4096-bit group
  • 6144-bit group
  • 8192-bit group
  • 192-bit elliptic curve group
  • 224-bit elliptic curve group
  • 256-bit elliptic curve group
  • 384-bit elliptic curve group
  • 521-bit elliptic curve group
  • 1024-bit prime group with 160-bit subgroup
  • 2048-bit prime group with 224-bit subgroup
  • 2048-bit prime group with 256-bit subgroup
  • 224-bit brainpool elliptic curve group
  • 256-bit brainpool elliptic curve group
  • 384-bit brainpool elliptic curve group
  • 512-bit brainpool elliptic curve group
  • 256-bit elliptic curve 25519 group
  • 448-bit elliptic curve 25519 group
Table of Contents