Important: The commands or keywords/variables that are available are dependent on platform type, product version, and installed license(s).
encryption: Default Child SA IPSec ESP algorithm is AES-CBC-128group: Default Diffie-Hellman group algorithm is none. This also deactivates PFS.hmac: Default Child SA IPSec hashing algorithm is SHA1-96.mode: Default Child SA IPSec Mode is Tunnel.Configures the default crypto strength to be none and disables Perfect Forward Secrecy.group 2
![]() |
Cisco Systems Inc. |
Tel: 408-526-4000 |
Fax: 408-527-0883 |