]> git.ipfire.org Git - people/ummeegge/ipfire-2.x.git/commit
projects / people / ummeegge / ipfire-2.x.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 87484f5) | patch
OpenVPN: New AES-GCM cipher for N2N and RW
authorErik Kapfer via Development <development@lists.ipfire.org>
Sun, 25 Feb 2018 13:49:49 +0000 (14:49 +0100)
committerMichael Tremer <michael.tremer@ipfire.org>
Sun, 25 Feb 2018 19:31:30 +0000 (19:31 +0000)
commit52f61e496df86f1a70fa9d468d64e756bdb66f4d
tree250f88367f761120ea622834a22c752f644d0654tree | snapshot
parent87484f5c784e013229bc6d32430cdc8eb7b8a709commit | diff
OpenVPN: New AES-GCM cipher for N2N and RW

AES-GCM 128, 196 and 256 bit has been added to Net-to-Net and Roadwarrior section.

HMAC selection for N2N will be disabled if AES-GCM is used since GCM provides an own message authentication (GMAC).
    'auth *' line in N2N.conf will be deleted appropriately if AES-GCM is used since '--tls-auth' is not available for N2N.
HMAC selection menu for Roadwarriors is still available since '--tls-auth' is available for RWs
    which uses the configuered HMAC even AES-GCM has been applied.

Signed-off-by: Erik Kapfer <erik.kapfer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
html/cgi-bin/ovpnmain.cgi diff | blob | blame | history
IPFire 2.x development tree