SSLv2 to TLS 1.2

Question

I was connected via SSL VPN and decided to sniff my traffic to see which encryption protocol was being used. To my dismay I saw that it is SSLv2. 
 This needs to change to at least TLS 1.1. How can this be done? 
 I have UTM 9.401-11.

sachingurung · Accepted Answer

Hi, 
 This cannot be changed. Open VPN will communicate on the parameter as in the attached screenshot. 
 
 Thanks

sachingurung · Answer

Hi Ryan, 
 SSH to UTM and follow the step: 
 Navigate to /var/chroot-smtp/etc/ 
 Open the exim.conf with vi: vi exim.conf 
 Change(or add if missing) the line openssl_options to: openssl_options = +no_sslv3 at the end of the section #TLS 
 Note: Make sure that the values for tls_require_ciphers looks as follows before you save your changes: RC4+RSA:HIGH:!MD5:!ADH:!SSLv2 
 Save your changes and close the editor: :wq 
 Now restart the smtpd service by executing /var/mdw/scripts/smtp restart 
 Thanks

sachingurung · Answer

Hi Ryan, 
 Unfortunately, this is not possible through support. 
 Please raise this as a feature request here: http://feature.astaro.com/ 
 Thanks