Use AES-256-GCM cipher instead of AES-256-CBC
Set to default AES-256-GCM
This commit is contained in:
Padraig Doran
GitHub
parent
f943387083
commit
49bbc4e143
@ -323,7 +323,7 @@ server 10.8.0.0 255.255.255.0" > /etc/openvpn/server/server.conf
|
|||||||
esac
|
esac
|
||||||
echo 'push "block-outside-dns"' >> /etc/openvpn/server/server.conf
|
echo 'push "block-outside-dns"' >> /etc/openvpn/server/server.conf
|
||||||
echo "keepalive 10 120
|
echo "keepalive 10 120
|
||||||
cipher AES-256-CBC
|
cipher AES-256-GCM
|
||||||
user nobody
|
user nobody
|
||||||
group $group_name
|
group $group_name
|
||||||
persist-key
|
persist-key
|
||||||
@ -423,7 +423,7 @@ persist-key
|
|||||||
persist-tun
|
persist-tun
|
||||||
remote-cert-tls server
|
remote-cert-tls server
|
||||||
auth SHA512
|
auth SHA512
|
||||||
cipher AES-256-CBC
|
cipher AES-256-GCM
|
||||||
ignore-unknown-option block-outside-dns
|
ignore-unknown-option block-outside-dns
|
||||||
verb 3" > /etc/openvpn/server/client-common.txt
|
verb 3" > /etc/openvpn/server/client-common.txt
|
||||||
# Enable and start the OpenVPN service
|
# Enable and start the OpenVPN service
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user