Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    hardware acceleration on SG 2100

    Scheduled Pinned Locked Moved OpenVPN
    1 Posts 1 Posters 351 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      sgw
      last edited by

      I already asked here ... unsure if it should go into "Official Netgate Hardware" or "OpenVPN":

      I run a Netgate 2100 appliance with pfSense plus 23.09

      under "System - Advanced - Cryptographic & Thermal Hardware" I have:

      Cryptographic Hardware
      SafeXcel and BSD Crypto Device (safexcel, cryptodev)

      On the dashboard it says:

      CPU Type	ARM Cortex-A53 r0p4
2 CPUs :
CPU 0: ARM Cortex-A53 r0p4 affinity: 0
CPU 1: ARM Cortex-A53 r0p4 affinity: 1
IPsec-MB Crypto: Yes (inactive)
SafeXcel Crypto: Yes (active)
Hardware crypto	AES-CBC, AES-CCM, AES-GCM, AES-ICM, AES-XTS, SHA1, SHA256, SHA384, SHA512

      But in the OpenVPN server config under "Hardware Crypto" there is "No Hardware Crypto Acceleration" and nothing else to select.

      So is the OpenVPN accelerated or not ... ?

      The server uses:

      Mode: Remote Access ( SSL/TLS + User Auth )
Data Ciphers: AES-256-GCM, AES-128-GCM, CHACHA20-POLY1305, AES-256-CBC
Digest: SHA256
D-H Params: 2048 bits

      Thanks for any help here. I'd really like to use what the hardware is capable of.

      And: yes, the box was restarted several times after configuring these settings.

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.