subject:"Re\: V5.0 \-> ipsec \-\-> lifetime dependencies between ipsec.conf \(ipsecctl\) and isakmpd.conf"

Re: V5.0 - ipsec -- lifetime dependencies between ipsec.conf (ipsecctl) and isakmpd.conf

2012-04-11 Thread Christian Weisgerber

Andre Ruppert a...@in-telegence.net wrote:

 is there any chance (perhaps in the future) to integrate lifetime
 parameters via ipsecctl -- ipsec.conf or will I be forced to keep on
 using isakmpd.conf?

There is lifetime code in ipsecctl.  I don't know if its absence
from the man page is an accidental omission or if the code is
incomplete.

-- 
Christian naddy Weisgerber  na...@mips.inka.de

Re: V5.0 - ipsec -- lifetime dependencies between ipsec.conf (ipsecctl) and isakmpd.conf

2012-04-11 Thread Stuart Henderson

On 2012-04-11, Christian Weisgerber na...@mips.inka.de wrote:
 Andre Ruppert a...@in-telegence.net wrote:

 is there any chance (perhaps in the future) to integrate lifetime
 parameters via ipsecctl -- ipsec.conf or will I be forced to keep on
 using isakmpd.conf?

 There is lifetime code in ipsecctl.  I don't know if its absence
 from the man page is an accidental omission or if the code is
 incomplete.


IIRC, it looks like it should work per-peer but can actually
only be used to set lifetimes for the default peer. Examination of
the output from ipsecctl -nvf /etc/ipsec.conf would confirm this.

Re: V5.0 - ipsec -- lifetime dependencies between ipsec.conf (ipsecctl) and isakmpd.conf

Re: V5.0 - ipsec -- lifetime dependencies between ipsec.conf (ipsecctl) and isakmpd.conf

2 matches

Site Navigation

Mail list logo

Footer information