Changes

Template:Networking rutos manual vpn (view source)

Revision as of 12:49, 2 July 2024

456 bytes added , 2 July

no edit summary

Line 145: Line 145:

</tr>

<tr>

−

<td>TLS: TLS cipher</td>

+

<td>TLS/TLS/Password: TLS cipher</td>

<td>All {{!}} DHE+RSA {{!}} Custom; default: All</td>

<td>Packet encryption algorithm cipher.</td>

</tr>

<tr>

−

<td>TLS : Allowed TLS ciphers</td>

+

<td>TLS/TLS/Password: Allowed TLS ciphers</td>

<td>Custom {{!}} TLS-DHE-RSA-WITH-AES-256-GCM-SHA384 {{!}} TLS-DHE-RSA-WITH-AES-256-CBC-SHA {{!}} TLS-DHE-RSA-WITH-AES-256-CBC-SHA256 {{!}} TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA {{!}} TLS-DHE-RSA-WITH-3DES-EDE-CBC-SHA {{!}} TLS-DHE-RSA-WITH-AES-128-GCM-SHA256 {{!}} TLS-DHE-RSA-WITH-AES-128-CBC-SHA {{!}} TLS-DHE-RSA-WITH-AES-128-CBC-SHA256 {{!}} TLS-DHE-RSA-WITH-SEED-CBC-SHA {{!}} TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA {{!}} TLS-DHE-RSA-WITH-DES-CBC-SHA; default: All</td>

<td>Specific cyphers to use. Only 6 can be selected at a time.</td>

Line 225: Line 225:

</tr>

<tr>

−

<td>TLS/Password:Additional HMAC authentication</td>

+

<td>TLS/TLS/Password/Password:Additional HMAC authentication</td>

<td>off {{!}} on; default: off</td>

<td>An additional layer of HMAC authentication on top of the TLS control channel to protect against DoS attacks.</td>

</tr>

<tr>

−

<td>TLS/Password: HMAC authentication key</td>

+

<td>TLS/TLS/Password/Password: HMAC authentication key</td>

<td>.key file; default: none</td>

<td>Uploads an HMAC authentication key file.</td>

</tr>

<tr>

−

<td>TLS/Password: HMAC key direction</td>

+

<td>TLS/TLS/Password/Password: HMAC key direction</td>

<td>0 {{!}} 1 {{!}} none; default: 1</td>

<td>The value of the key direction parameter should be complementary on either side (client and server) of the connection. If one side uses 0, the other side should use 1, or both sides should omit the parameter altogether.</td>

</tr>

<tr>

−

<td>TLS/Password: Certificate authority</td>

+

<td>TLS/TLS/Password/Password: Certificate authority</td>

<td>.ca file; default: none</td>

<td>Certificate authority is an entity that issues digital certificates. A digital certificate certifies the ownership of a public key by the named subject of the certificate.</td>

</tr>

<tr>

−

<td>TLS: Client certificate</td>

+

<td>TLS/TLS/Password: Client certificate</td>

<td>.crt file; default: none</td>

<td>Client certificate is a type of digital certificate that is used by client systems to make authenticated requests to a remote server. Client certificates play a key role in many mutual authentication designs, providing strong assurances of a requester's identity.</td>

</tr>

<tr>

−

<td>TLS: Client key</td>

+

<td>TLS/TLS/Password:Client key</td>

<td>.key file; default: none</td>

<td>Authenticates the client to the server and establishes precisely who they are.</td>

</tr>

<tr>

−

<td>TLS/Config File: Private key decryption password (optional)</td>

+

<td>TLS/Config File: Private key decryption password (optional)</td>

<td>string; default: none</td>

<td>A password used to decrypt the server's private key. Use only if server's .key file is encrypted with a password.</td>

Line 270: Line 270:

<li>Some configuration fields become available only when certain other parameters are selected. The names of the parameters are followed by a prefix that specifies the authentication type under which they become visible. Different color codes are used for different prefixes:

<ul>

−

<li>Red for Authentication: TLS ~~and~~ TLS/Password</li>

+

<li>Red for Authentication: TLS</li>

+

<li>Red for Authentication: TLS/Password</li>

<li>Purple for Authentication: Static key</li>

<li>Blue for Authentication: Password</li>

Vainius.l

Administrators

8,949

edits

Namespaces

Variants

Views

More

Search

Changes

Template:Networking rutos manual vpn (view source)

Revision as of 12:49, 2 July 2024

Navigation menu

Personal tools

NAVIGATION

Tools

Categories