Koozali.org: home of the SME Server

smeserver-openvpn-s2s released

Offline Jean-Philippe Pialasse

  • *
  • 2,743
  • +11/-0
  • aka Unnilennium
    • http://smeserver.pialasse.com
smeserver-openvpn-s2s released
« on: April 01, 2021, 10:25:05 PM »
I am pleased to announce the release of smeserver-openvpn-s2s the contrib dedicated to Site to Site VPN.

Some improvements have been added to this release.
=> improvement of the panel
=> ability to set HMAC and Cipher from the panel
=> Encryption of data channel with secured protocols using SHA256 and AES-128-CBC as new default.

If you migrate from SME9, it will be time to update your existing connections to respect this, as we will keep existing connections as is. Default for openvpn are still SHA1 and BlowFish who are known to be insecure.

see https://wiki.contribs.org/OpenVPN_SiteToSite

Offline jameswilson

  • ****
  • 739
  • +0/-0
    • Security Warehouse, trade security equipment
Re: smeserver-openvpn-s2s released
« Reply #1 on: April 02, 2021, 11:06:43 AM »
Brilliant