Hi, Had a query regarding Certificate Expiration and revocation logic used in strongswan.
If a IKEv2 tunnel is *already established with a peer, *then is this tunnel brought down *automatically *by strongswan in case of any of the following conditions become true: 1. If we provide updated CRL to the stack in which any cert of peer's trust chain is revoked or 2. Any certificate in our or peer's trust chain gets expired at runtime. BR Sajal
_______________________________________________ Users mailing list [email protected] https://lists.strongswan.org/mailman/listinfo/users
