VPN 3000 guide says that
"Group 5 (1536-bits) is the default choice for use with the AES encryption algorithms. It works only for LAN-to-LAN connections, and for clients using certificates".
but then it also says that one of the default IKE proposals is:
"CiscoVPNClient3DES-MD5-DH5 = Use preshared keys (XAUTH) and MD5/HMAC-128 for authentication. Use 3DES-168 encryption. Use D-H Group 5 to generate SA keys. This selection allows XAUTH user-based authentication"
Does this mean that this particular proposal can be used only for LAN-to-LAN connections or is there something I'm missing?
Thank you