Changes between Version 23 and Version 24 of CipherNegotiation
- Timestamp:
- 08/11/20 21:38:57 (4 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
CipherNegotiation
v23 v24 8 8 9 9 == Effective directives 10 `--data-ciphers ALG:ALG` - Data channel ciphers. Default `ALG` AES-256-GCM:AES-128-GCM [[br]]11 `--data-cipher-fallback ALG` - Fallback data channel cipher.[[br]]12 `--cipher ALG` - Data channel cipher. To be deprecated.[[br]]10 2.5: `--data-ciphers ALG:ALG` - Data channel ciphers. Default `ALG` AES-256-GCM:AES-128-GCM [[br]] 11 2.5: `--data-cipher-fallback ALG` - Fallback data channel cipher.[[br]] 12 All: `--cipher ALG` - Data channel cipher. **Will be deprecated**.[[br]] 13 13 In OpenVPN 2.5 `--cipher` does not have a default `ALG`.[[br]] 14 14 In OpenVPN upto 2.4 the default `ALG` is BF-CBC.[[br]] 15 `--ncp-disable` - Disable NCP - **Deprecated**.[[br]]15 2.4: `--ncp-disable` - Disable NCP - **Deprecated**.[[br]] 16 16 17 17 == Common configurations … … 129 129 130 130 ==== Server version 2.4 Configuring: `--cipher`[[br]] 131 || `--cipher` ||= `--ncp-ciphers` 132 || AES-256-CBC ||= - 131 || `--cipher` ||= `--ncp-ciphers` =|| NCP || 132 || AES-256-CBC ||= - =|| Yes || 133 133 134 134 * __Client version 2.5__ … … 146 146 * __Client version 2.3__ 147 147 || `--cipher` || NCP || Connection || 148 || - || No || OK. BF-CBC||148 || - || No || Fail (no shared cipher) || 149 149 || AES-256-CBC || No || OK. AES-256-CBC || 150 || BF-CBC || No || OK. BF-CBC||151 152 * __Client version 2.2__ 153 || `--cipher` || NCP || Connection || 154 || - || No || OK. BF-CBC||155 || BF-CBC || No || OK. BF-CBC||150 || BF-CBC || No || Fail (no shared cipher) || 151 152 * __Client version 2.2__ 153 || `--cipher` || NCP || Connection || 154 || - || No || Fail (no shared cipher) || 155 || BF-CBC || No || Fail (no shared cipher) || 156 156 ---- 157 157
