From f43f44d362b344d3cc33503a8d888d5effd6624e Mon Sep 17 00:00:00 2001
From: Victor LABORIE <vlaborie@evolix.fr>
Date: Thu, 8 Jun 2017 18:01:24 +0200
Subject: [PATCH] ipsec: use aes instead of 3des

---
 ipsec/templates/ipsec.conf.j2 | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/ipsec/templates/ipsec.conf.j2 b/ipsec/templates/ipsec.conf.j2
index 17690c57..862cf686 100644
--- a/ipsec/templates/ipsec.conf.j2
+++ b/ipsec/templates/ipsec.conf.j2
@@ -5,6 +5,6 @@ remote_ip_{{ ipsec_name }}="{{ ipsec_remote_ip }}"
 remote_networks_{{ ipsec_name }}="{{ ipsec_remote_network }}"
 
 ike esp from $local_network to $remote_networks_{{ ipsec_name }} peer $remote_ip_{{ ipsec_name }} \
-main auth hmac-sha2-512 enc 3des group modp4096 \
-quick auth hmac-sha2-512 enc 3des group modp4096 \
+main auth hmac-sha2-512 enc aes group modp4096 \
+quick auth hmac-sha2-512 enc aes group modp4096 \
 psk "{{ ipsec_psk }}"