|
|
|
|
|
|
by Mister_Snuggles
2900 days ago
|
|
|
This is correct, and I basically said as much. However, with a Mac you are most likely using the VPN in a roadwarrior scenario. In this case, I'd argue that one of the peers should decide on what encryption, authentication, etc should be used and the other peer (the roadwarrior Mac, in this case) should accept it. In server-to-server or network-to-network scenarios, configuring both peers to match makes sense. |
|
|
The goal of proposals in not matching - it is finding minimum security both sides agree on. I would not accept it, if previously strong settings were suddenly downgraded. I, roadwarrior, have same rights and requirements as any server :)