Greeting, I'm new to this discussion and hope can get your attentions ^_^
I'm wonder is there any way to set pfs in GETVPN network?
I have my GETVPN lab using GNS3. Everything is running, but I would like to see if we can further secure GETVPN.
Also,I would like to see if this is possible, if pfs is set then on phase 2 rekey, a new DH key will be used instead the same key used by phase 1 . Then can we see the DH key for both phase 1 and phase 2?