Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
23.1 Legacy Series
»
Encryption algorithm (deprecated)
« previous
next »
Print
Pages: [
1
]
Author
Topic: Encryption algorithm (deprecated) (Read 1593 times)
geek
Newbie
Posts: 47
Karma: 1
Encryption algorithm (deprecated)
«
on:
May 20, 2023, 07:05:07 pm »
While making a new openvpn server in Opnsense (road warrior / remote access)
I saw "Encryption Algorithm" had a text saying "depcrecated"
with the following line:
"Cipher selection for older clients. Only preserved for backwards compatibility reasons."
Does that mean that it will auto negotiate select the encryption algorithm when the client connects to the openvpn server on opnsense? (for a while I thought encryption altogether is disabled, but that seemed silly
)
Logged
Patrick M. Hausen
Hero Member
Posts: 6844
Karma: 575
Re: Encryption algorithm (deprecated)
«
Reply #1 on:
May 20, 2023, 08:25:03 pm »
The client and the server will negotiate the "best" encryption both sides support for some value of "best". If the client
only
supports deprecated algorithms and you disable this selection on the server side, a connection will not be established. If you enable it this client will be able to establish a connection with possibly broken algorithms.
Logged
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do.
(Isaac Asimov)
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
23.1 Legacy Series
»
Encryption algorithm (deprecated)