Add more DH Groups - Especially for Flagship Routers

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

Votes

Add more DH Groups - Especially for Flagship Routers

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

EIBROG

2024-11-19 23:15:51

Posts: 45

Helpful: 79

Solutions: 2

Stories: 0

Registered: 2020-01-27

Add more DH Groups - Especially for Flagship Routers

2024-11-19 23:15:51

Model: ER7206 (TL-ER7206)

Hardware Version: V3

Firmware Version:

Customer needs a VPN to a healthcare provider and I had to buy a Forigate because the tunnel needed DH20 pn the IPSEC Phase-2. (19 was a backup option)

The 7206 topped out at 14.

Any plans to add additional features for something like this?

I just fired up an older FortiGate (50E iirc) and it went to (PFS) DH32.

1 Reply

Clive_A

2024-11-21 02:04:39

Posts: 8362

Helpful: 4287

Solutions: 2178

Stories: 0

Registered: 2023-06-09

Re:Add more DH Groups - Especially for Flagship Routers

2024-11-21 02:04:39

Hi @EIBROG

Thanks for posting in our business forum.

There is no plan as far as I know.

FYI, more DH groups mean more performance is required, which means the overall performance is needed.

It seems to be sensable to add more DH to new hardware.

Add more DH Groups - Especially for Flagship Routers

Add more DH Groups - Especially for Flagship Routers

Information

Voters 0

Tags