Community discussions

MikroTik App
 
pawlisko
Frequent Visitor
Frequent Visitor
Topic Author
Posts: 54
Joined: Sat Oct 17, 2020 5:12 am

Any chance for including SHA384 into the firmware?

Sat Oct 17, 2020 7:33 pm

I have a VPN which offers IPSec/IKEv2 connection. I set it up on Mikrotik and it is working but...

I would prefer to use AES-256-GCM-SHA384 connection over what I have now AES256-CBC-SHA512.

AES-256-GCM is much much faster than AES-256-CBC.

Any chance of implementing this? Or workarounds?

Thanks,
 
User avatar
deadManN
Frequent Visitor
Frequent Visitor
Posts: 67
Joined: Thu Jan 21, 2016 9:18 am

Re: Any chance for including SHA384 into the firmware?

Mon Dec 05, 2022 11:23 am

I have a VPN which offers IPSec/IKEv2 connection. I set it up on Mikrotik and it is working but...

I would prefer to use AES-256-GCM-SHA384 connection over what I have now AES256-CBC-SHA512.

AES-256-GCM is much much faster than AES-256-CBC.

Any chance of implementing this? Or workarounds?

Thanks,
I noticed that softether could benefit from it...
ovpn2.png
You do not have the required permissions to view the files attached to this post.
 
gabacho4
Member
Member
Posts: 330
Joined: Mon Dec 28, 2020 12:30 pm
Location: Earth

Re: Any chance for including SHA384 into the firmware?

Mon Dec 05, 2022 6:32 pm

What device are you using? AES256GCM is supported on a number of models. My RB5009UG for example.

Also SHA384 is supported too. I’m using ROS7.7beta8 for what it’s worth
 
pawlisko
Frequent Visitor
Frequent Visitor
Topic Author
Posts: 54
Joined: Sat Oct 17, 2020 5:12 am

Re: Any chance for including SHA384 into the firmware?

Mon Mar 06, 2023 3:14 pm

I noticed that softether could benefit from it...
ovpn2.png
Do you realize that you were replying to 2 years old post?

Since then a lot has been done.

Who is online

Users browsing this forum: LabarH, sinisa and 95 guests