Hi,
There is an issue in IKEv2 REDIRECT RFC 5685. In one scenario, the IKEv2
REDIRECT will not work indefinitely.
Scenario: -
Let's assume there are about 1000 clients connected to a IKEv2 REDIRECT enabled
SeGW. None of the clients were IKEv2 redirect enabled at the time of
establishing SA with
Hi All.
Host A --Host B
Assume Host-A & Host-B want to established IPSEC Tunnel, First they
established one IKE SA and one IPSEC SA (Child SA).
After that due to addition of a new IPSEC Policy(SPD), Both the sides
triggered one more Child SA creation.