Hi Jordan,
Does strongswan 5.x provide esp replay protection with IKEv1?
Yes.
I can pass packets with seq number 1, 2, 3 , ..., 31, 1, 2,3, ..., 31.
Basically packets with duplicate sequence number are not dropped.
In my tests this works as expected, both for IKEv1 and IKEv2, and with a
Thank you Martin for the details. Glad to hear both IKE versions support anti
replay.
I will check with the steps you shared.
I am wondering if my configuration is wrong.
I am running strongswan version 5.0.1 and I am using the strongswan global
replay window to configure a value.
Do I
Hello SS team,
Does strongswan 5.x provide esp replay protection with IKEv1?
I can pass packets with seq number 1, 2, 3 , ..., 31, 1, 2,3, ..., 31.
Basically packets with duplicate sequence number are not dropped.
I tried a couple of things to resolve this issue with no success.
1)
