NetworkManager 1.24 Coming Soon With VRF Support, Opportunistic Wireless Encryption

Written by Michael Larabel in Linux Networking on 11 April 2020 at 08:39 AM EDT. 4 Comments
LINUX NETWORKING
Friday marked the release of NetworkManager 1.24-RC1 as the first test candidate for this component important to wired and wireless networking on the Linux desktop.

One of the big additions to NetworkManager 1.24 is support for Opportunistic Wireless Encryption. OWE provides encrypted wireless data transfers without a secret/key. This technology is also known as WiFi Certified Enhanced Open since 2018. This NetworkManager OWE support is contingent upon WPA-Supplicant being built with the capability enabled and can work with any mac80211-supported adapter.

IETF.org explains of OWE, "With OWE, the client and AP perform a Diffie-Hellman key exchange during the access procedure and use the resulting pairwise secret with the 4-way handshake instead of using a shared and public PSK in the 4-way handshake. OWE requires no special configuration or user interaction but provides a higher level of security than a common, shared, and public PSK. OWE not only provides more security to the end user, it is also easier to use both for the provider and the end user because there are no public keys to maintain, share, or manage."

Another new addition to NetworkManager 1.24 is support for Virtual Routing and Forwarding (VRF) interfaces. VRF allows multiple instances of a routing table to co-exist. VRF can be used for increased security in automatically segregating traffic.

NetworkManager 1.24-RC1 also presents improvements to the NetworkManager command-line interface (NMCLI), new bridging options, new IPv6 settings, support for detecting if a PIN-protected SIM card has been externally unlocked, fixes for the DHCP client, and other improvements/fixes.

More details on NetworkManager 1.24-RC1 for testing via FreeDesktop.org.
4 Comments
Related News
Samba 4.20 Released With WSP Search Client, Service Witness Protocol
Many Networking Improvements & New Wired/Wireless Devices For Linux 6.9
Cloudflare Makes Pingora Rust Framework Open-Source
NetworkManager 1.46 Can Now Manage Ethtool EEE Settings, IPv4 DAD Default & 2FA VPNs
Linux 6.8 Network Optimizations Can Boost TCP Performance For Many Concurrent Connections By ~40%
The First Rust-Written Network PHY Driver Set To Land In Linux 6.8
About The Author
Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week
Rust-Written LAVD Kernel Scheduler Shows Promising Results For Linux Gaming
Fedora Linux 40 Cleared For Release Next Week
AMD: "Additional Parts Of The Radeon Stack To Be Open Sourced Throughout The Year"
Fedora Linux 40 Available For Download As A Wonderful Upgrade
Mozilla Finally Begins Offering Firefox ARM64 Linux Binaries
openSUSE Factory Achieves Bit-By-Bit Reproducible Builds
Linux 6.10 Preps A Kernel Panic Screen - Sort Of A "Blue Screen of Death"
MPV 0.38 Media Player Released With New Options & Fixes