Hyperviser is KVM. Hardware acceleration is enabled if we use AES-GCM so that AES-NI is supported by this.What Hypervisor are you running CHR on ?
That confused me why AES-CBC cannot get accelerated on my CHR host.From v6.39 changelog:
*) ipsec - enable aes-ni on i386 and x64 for cbc, ctr and gcm modes;
You mean hAP ac have 802.3af/at PoE in, or other device have this?ok, on it
I suggest it for security(RSA4096+SHA512+AES256).But you suggest using SSTP/OVPN as point 1 in your solution. Do I misunderstand?