I saw the only section on h/w encryption on the wiki https://wiki.mikrotik.com/wiki/Manual:I ... algorithms but frankly I'd like to understand more.
First of all, when I set up for example eoip or ipip tunnel, I can enable IPSec (which will be done in kind of default way), and it'll be set up as 3des/aes-128, so no h/w acceleration (as, accordingly to the article on the wiki, h/w is only for sha1/sha256). I'd like to set up "default" encryption to fit the h/w acceleration requirements but still no luck with it.
Second thing I'd like to know is if there any h/w encryption support for ovpn and sstp tunnels at all (and pp2p/l2tp, too), despite the chipper I set up? I'd like to have it accelerated as well (why should it be CPU-only if we can offload to hardware?), but yet I see no info.
I do understand this is like child game and IP-hero will always use IPSec, but in some doom configs (when clients are behind NAT etc) I'd like to better have at least any connection than no tunnel at all and this is where lack of h/w support may be kind of problem.