Exam4Training

Which is NOT an encryption algorithm that can be used in an IPSEC Security Association (Phase 2)?

Which is NOT an encryption algorithm that can be used in an IPSEC Security Association (Phase 2)?
A . AES-GCM-256
B . AES-CBC-256
C . AES-GCM-128

Answer: B

Explanation:

The answer is B because AES-CBC-256 is not a supported encryption algorithm for IPsec Security Associations (Phase 2) in R81. The supported encryption algorithms are AES-GCM-128, AES-GCM-256, AES-CBC-128, 3DES, and NULL3

Reference: Check Point R81 VPN Administration Guide

Exit mobile version