escuela-comun/abyayala
1
0
Fork 0
Code Issues 32 Pull Requests Packages Projects Releases Wiki Activity

optimizar el túnel de la rap #31

New Issue
Open
opened 2025-05-16 18:26:16 +00:00 by fauno · 2 comments
fauno commented 2025-05-16 18:26:16 +00:00
Owner
Copy Link

tinc usa un monton de cpu cuando hay mucho trafico porque tiene que cifrar el tunel y usa algoritmos antiguos (rsa si no recuerdo mal). no se si en 1.0 es posible cambiar los algoritmos, pero recuerdo que en 1.1 si

tinc usa un monton de cpu cuando hay mucho trafico porque tiene que cifrar el tunel y usa algoritmos antiguos (rsa si no recuerdo mal). no se si en 1.0 es posible cambiar los algoritmos, pero recuerdo que en 1.1 si
fauno commented 2025-05-16 18:27:09 +00:00
Author
Owner
Copy Link

de man tinc.conf

       Cipher = cipher (aes-256-cbc)
               The symmetric cipher algorithm used to encrypt UDP packets.  Any
               cipher supported by LibreSSL or OpenSSL is recognised.  Further‐
               more, specifying "none" will turn off packet encryption.  It  is
               best to use only those ciphers which support CBC mode.
[...]
       Digest = digest (sha256)
               The digest algorithm used to authenticate UDP packets.  Any  di‐
               gest  supported  by LibreSSL or OpenSSL is recognised.  Further‐
               more, specifying "none" will turn off packet authentication.
de `man tinc.conf` ``` Cipher = cipher (aes-256-cbc) The symmetric cipher algorithm used to encrypt UDP packets. Any cipher supported by LibreSSL or OpenSSL is recognised. Further‐ more, specifying "none" will turn off packet encryption. It is best to use only those ciphers which support CBC mode. [...] Digest = digest (sha256) The digest algorithm used to authenticate UDP packets. Any di‐ gest supported by LibreSSL or OpenSSL is recognised. Further‐ more, specifying "none" will turn off packet authentication. ```
fauno commented 2025-05-16 18:30:19 +00:00
Author
Owner
Copy Link

en tinc 1.1 cambiaron los valores por defecto a blowfish y sha1 respectivamente:

https://tinc-vpn.org/documentation-1.1/Host-configuration-variables.html

en tinc 1.1 cambiaron los valores por defecto a `blowfish` y `sha1` respectivamente: https://tinc-vpn.org/documentation-1.1/Host-configuration-variables.html
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
No items
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
ChasquiLabo cyborg_yogui fauno l4uZP Numerica pirra
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: escuela-comun/abyayala#31
No description provided.
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?