Page 1 of 1
Any chance for including SHA384 into the firmware?
Posted: Sat Oct 17, 2020 7:33 pm
by pawlisko
I have a VPN which offers IPSec/IKEv2 connection. I set it up on Mikrotik and it is working but...
I would prefer to use AES-256-GCM-SHA384 connection over what I have now AES256-CBC-SHA512.
AES-256-GCM is much much faster than AES-256-CBC.
Any chance of implementing this? Or workarounds?
Thanks,
Re: Any chance for including SHA384 into the firmware?
Posted: Mon Dec 05, 2022 11:23 am
by deadManN
I have a VPN which offers IPSec/IKEv2 connection. I set it up on Mikrotik and it is working but...
I would prefer to use AES-256-GCM-SHA384 connection over what I have now AES256-CBC-SHA512.
AES-256-GCM is much much faster than AES-256-CBC.
Any chance of implementing this? Or workarounds?
Thanks,
I noticed that softether could benefit from it...
ovpn2.png
Re: Any chance for including SHA384 into the firmware?
Posted: Mon Dec 05, 2022 6:32 pm
by gabacho4
What device are you using? AES256GCM is supported on a number of models. My RB5009UG for example.
Also SHA384 is supported too. I’m using ROS7.7beta8 for what it’s worth
Re: Any chance for including SHA384 into the firmware?
Posted: Mon Mar 06, 2023 3:14 pm
by pawlisko
I noticed that softether could benefit from it...
ovpn2.png
Do you realize that you were replying to 2 years old post?
Since then a lot has been done.