hi all,
Is it right that the duplicate IKE tunnel is not deleted because the
older tunnel is running DPD detecting.
I am running strongswan-4.5.2 and using IKEv2 with DPD in the
following scenario:
http://www.strongswan.org/uml-testresults.html
I follow these steps:
1. Carol establishes a ipsec tunnel with moon.
2. Carol shutdown the eth0 with the command ifdown
3. Carol run 'ipsec resstart'
4. Carol establishes a ipsec tunnel with moon again.
Then I can see two IKE tunnel in the 'ipsec statusall', and the
older one is running DPD detecting. I can see "deleting duplicate
tunnel....." in /var/log/messages but the older tunnel is not deleted
immediately.
Is it right or am I missing so meting in the strongwan configure
file?
And it is a way to delete the older tunnel immediately with DPD ?
best regards,
nanajian5
_______________________________________________
Users mailing list
[email protected]
https://lists.strongswan.org/mailman/listinfo/users
