Re: Does the firewall/VPN series support higher signature algorithm (sha-256) than sha1?

zerealfox · ‎2015-11-12

Hello,

As SHA1 is marked insecure by our security team, I'd like to know if the latest firmwares for IPSEC and SSL VPN support higher signature algorithm (ie: sha-256, sha-384, sha-512)?

Regards,

Pascal

JohnRo · ‎2015-11-12

Hello zerealfox,

Welcome to the community!

I have checked our datasheets and firmwares and it appears that sha-256 is currently not supported yet on our units. You can post a request on our Idea Exchange Board and give the post a kudos(like), the more kudos the request gets the more it is likely to be implemented.

Thanks,

JohnRo
NETGEAR® Community Team

adit · ‎2015-11-14

Which router and firmware?

Most current ProSafe routers support IPSec SHA2-256 and SHA2-512, as well as SHA-1 and MD5, neither of which I recommend using.

SSL is certificate based so there are no settings for the Authentication algorithm.

Encryption alogritms supported are DES/3DES/AES-128(not recommended) and AES-256.

Hex/IP Converter - Online Subnet Calculator - LAN Subnets NOT to Use