====== MS Windows IPsec ======

==== Enable 2048-bit MODP DH ====

Add DWORD key:

  HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Rasman\Parameters\NegotiateDH2048_AES256

Set it to ''1'' to enable (the other algorithms are still proposed), or ''2'' to enforce the use of 256-bit AES-CBC and 2048-bit MODP DH (only these will be proposed).