Hello all:
Is there a way to tighten up the encryption ciphers and DH groups the EdgeRouter it says it is capable of?
We currently have a corporate office with remote access and a site-to-site setup. We're failing Trustwave's PCI scan due to the EdgeRouter offering weak isakmp ciphers and DH groups, despite being within compliance on what we're actually using. We can write it off as a business need, but I'm curious if we can correct it at a technical level.
Thanks for your time.