Recently for work I started trying to get a VPN set up to my office. As the drive to the office is over an hour long, if I could get away with not going in one day a week it may save my sanity.

A couple of weeks ago I installed pfSense as their boundary device. pfSense has been a dream so far and everything fell into place. I ran into some problems setting up the VPN (IKEv2) to talk to my computers. I had hard time finding a supported ciphers for each operating system. Below is what I’ve discovered so far for the builtin clients:

Phase 1 Ciphers accepted

OS X (10.11.2) accepts the following:

3DES, SHA1 (96), DH Group 2

iOS (9.2)

AES128 (CBC), SHA1 (96), DH Group 2

AES256 (CBC), SHA256, DH Group 5

3DES, SHA1 (96), DH Group 2

Windows 7 (SP1) accepts the following:

3DES, SHA1, DH Group 2

AES256 (CBC), SHA1, DH Group 2

3DES, SHA256, DH Group 2

AES256 (CBC), SHA256, DH Group 2

3DES, SHA384, DH Group 2

AES256 (CBC), SHA384, DH Group 2

Windows 8 (8.1 Pro) accepts the following:

3DES, SHA1, DH Group 2

AES256 (CBC), SHA1, DH Group 2

3DES, SHA256, DH Group 2

AES256 (CBC), SHA256, DH Group 2

3DES, SHA384, DH Group 2

AES256 (CBC), SHA384, DH Group 2

Windows 10

AES256 (CBC), SHA1, DH Group 2

3DES, SHA256, DH Group 2

AES256 (CBC), SHA256, DH Group 2

3DES, SHA256, DH Group 2

AES256 (CBC), SHA384, DH Group 2

Android 4.2