MikroTik

Community discussions
https://forum.mikrotik.com/

Feature request: updated TLS ciphers for SSTP

https://forum.mikrotik.com/viewtopic.php?t=178337

Page 1 of 1

Feature request: updated TLS ciphers for SSTP

Posted: Wed Sep 08, 2021 12:25 pm
by drs
I've setup the SSTP server as below, but the strongest cipher suite that's offered is TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (0xc014). That's concerning because both CBC mode and the SHA1 hash are widely regarded as insufficiently secure today. The SSTP client on my Windows 10 PC supports cipher suites with GCM as well as SHA256 and 384 (e.g. TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (0xc030)) so clients would be able to use them, if only RouterOS supported them.

Thanks.
Code: Select all
/interface sstp-server server
set authentication=mschap2 certificate=XXX default-profile=vpn enabled=yes \
    force-aes=yes pfs=yes tls-version=only-1.2

Re: Feature request: updated TLS ciphers for SSTP

Posted: Tue Dec 07, 2021 9:30 am
by alasdaircs
I'll second this. I just span up a stock Windows Server 2022 image on Azure and tried to connect it to an RB 3011 running RouterOS 6.49.2, and it failed to connect because it only supports cipher suites known to be secure out of the box, and _CBC_SHA does not meet that requirement. The error message was typically unhelpful too. I had to manually enable a less secure compatible cipher suite to get any connection at all.

I think the Azure image must be security hardened compared to regular Windows Server 2022 (see https://docs.microsoft.com/en-us/window ... erver-2022) so not a problem for most people.
All times are UTC+02:00
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/