Disable Weak Ciphers such as RC4-MD5

Post your questions about SoftEther VPN software here. Please answer questions if you can afford.
Post Reply
ruchshuk
Posts: 1
Joined: Fri Feb 22, 2019 8:28 am

Disable Weak Ciphers such as RC4-MD5

Post by ruchshuk » Fri Feb 22, 2019 8:49 am

How can I force the client and softether vpn server to use AES encryption only? When I created the ovpn file using SoftEther VPN Server Manager, I used AES encryption as encryption algorithm and installed it at client side. But I believe server is not accepting it- it is looking for RC4-MD5. How can I fix it?

cedar
Site Admin
Posts: 1200
Joined: Sat Mar 09, 2013 5:37 am

Re: Disable Weak Ciphers such as RC4-MD5

Post by cedar » Tue May 21, 2019 7:40 am

I think SoftEther VPN Server can accept OpenVPN connection with AES encoding.
What error did you see?

the6thbook
Posts: 3
Joined: Tue Jan 08, 2019 3:34 pm

Re: Disable Weak Ciphers such as RC4-MD5

Post by the6thbook » Mon Oct 28, 2019 5:31 pm

I'm still having this issue. I can't get RC4-MD5 disabled:

https://github.com/SoftEtherVPN/SoftEtherVPN/pull/343

ozone
Posts: 57
Joined: Thu Sep 19, 2019 7:18 pm

Re: Disable Weak Ciphers such as RC4-MD5

Post by ozone » Sun Nov 03, 2019 12:49 am

I have the same issue.

A Mikrotik client connecting to a SE server always reverts to the weak RC4 cipher, although both support much higher ones like various forms of AES256...
But apparently, RC4 is all both nodes can agree upon during the initial handshake.

Until today, found no way of enforcing a higher cipher. Nor got any hint of how to do this on this forum or by someone of SE.

...Still hoping though...

Post Reply