I'm not using VPN azure. The config file does in fact show the specified encryption algorithm. E.G. string CipherName AES128-GCM-SHA256
The server (4.32 build 9731) log has the following entries:
Code: Select all
[RPC-2544]: A new encryption algorithm name for the server has been set. The new encryption algorithm name is "AES128-GCM-SHA256". SSL communication for connection "CID-X-XXXXXXXXXX" has been started. The encryption algorithm name is "TLS_AES_256_GCM_SHA384".
Best I can tell, it doesn't appear anything about the intended cipher gets logged to the client (4.32 build 9731). When I de-select "encrypt vpn session with SSL" on the client that connects without encryption as expected.
It's great that SoftEther can negotiate a really secure cipher like AES_256_GCM, however my use case is on older PCs (one without AES-NI) and when I tested the PCs with OpenVPN server/client AES_256_GCM vs AES_128_GCM the difference was enormous in terms of CPU usage and throughput. The reason I need just a low level of encryption is my ISP throttles my unencrypted traffic.