The server is configured to only accept AES-256-GCM with SHA-512 and ECP384.
I have added the following IPsec profile:
Code: Select all
name="algo-profile" hash-algorithm=sha512 enc-algorithm=aes-256 dh-group=ecp384 lifetime=1d proposal-check=obey nat-traversal=yes dpd-interval=2m dpd-maximum-failures=5
How do I make RouterOS select the correct cipher mode (GCM instead of CBC)?