Up to now, the option -A_ determines the cipher used to send out and the cipher to be accepted.
I am pondering to loose the requirement that incoming packets must be encrypted using the same cipher. Instead, an edge could accept packets encrypted with any of the other ciphers – delivering usable payload only if they use the same key of course. It would be a relief to some edges of which the CPU might deal better with other ciphers, especially encrypting.
Up to now, the option
-A_determines the cipher used to send out and the cipher to be accepted.I am pondering to loose the requirement that incoming packets must be encrypted using the same cipher. Instead, an edge could accept packets encrypted with any of the other ciphers – delivering usable payload only if they use the same key of course. It would be a relief to some edges of which the CPU might deal better with other ciphers, especially encrypting.
What do you think?