Status: 2017-03-29 10:10 (CET) - OpenVPN 2.4.0 upgrade completed on all VPN servers.
On March 16, we will begin upgrading our servers to OpenVPN version 2.4.0. In conjunction, we will introduce changes to our ports, protocols, and ciphers, all of which will provide improved service to our customers. We will also upgrade our server certificates from 2048-bit RSA with SHA1 to 4096-bit RSA with SHA512.
If you are using the Mullvad client, you do not need to do anything as the changes will be implemented automatically.
If you have a router running OpenVPN and want to benefit from all of the changes, you need to download a new configuration file and upgrade to OpenVPN 2.4.0. You may experience a drop in connection as we restart servers. The updating process can be monitored in our VPN servers guide.
With the upgrade to OpenVPN 2.4.0 comes support for the AES cipher mode GCM which offers better performance on most modern hardware. It will also be possible to use any cipher on any port. BF-CBC, AES-CBC, and AES-GCM will become available on all ports and protocols. Please note that AES-256-GCM will always be the preferred default with OpenVPN 2.4.0.
We are adding more ports:
For a complete list of available ports and to read more, check out our guide on advanced options in the Mullvad client.
If you have any questions, please contact email@example.com.