Refi
Remove Ads

Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Vpnserver - OpenVPN Encryptions & Authentication
#1
I have setup a vpn server on a synology nas, so that computers and phones can vpn to it. What are the best options for the various encryption and authentication options that appear in vpn server of the synology nas.

Currently, we are using aes-256-CBC and SHA512. I have read in a few places aes-256-CBC is being deprecated, therefore I’d like to look into something else.
Reply
#2
(03-04-2019, 10:35 AM)gerardv514 Wrote: I have read in a few places aes-256-CBC is being deprecated...

Where did you read that? On the OpenVPN website itself?
Reply
#3
(04-04-2019, 08:18 AM)Shadow Wrote:
(03-04-2019, 10:35 AM)gerardv514 Wrote: I have read in a few places aes-256-CBC is being deprecated...

Where did you read that? On the OpenVPN website itself?


I may have this wrong, I am going to try and find the articles I was reading. Looking briefly, I do not think aes-256-CBC is the correct information. I will update this post to correct this once I find it.
Reply
#4
Here is one site that mentions aes-256-cbc being deprecated

https://www.pahoehoe.net/synology-openvpn-setup/

“Encryption = AES-256-CBC - Choose this or another encryption algorithm. NOTE: This cipher is being deprecated. Perhaps the next release of OpenVPN on Synology will have current ciphers.
Authentication = SHA512 - Do not use SHA1 anymore. SHA256 is probably more than enough. But I went for the highest HMAC.”
Reply


Forum Jump:


Users browsing this thread:
Refi
Remove Ads