[strongSwan-dev] Any route change triggers unexpected IKE-SA reauth if left is not on output interface

Tobias Brunner tobias at strongswan.org
Tue Nov 15 16:37:37 CET 2016

Hi Christophe,

> If the left address is specified and mobike is disabled for  a
> connection, this reauth will anyway not entail a change of the source
> address. Would it makes sense to add an exception for such case?

I guess we could.  I've pushed a commit to the roam-ignore branch.  Not
sure if this has any unwanted side-effects.

> I don't use mobike for this connection, but I may enable it on other
> connections. I guess we cannot ignore routing events on a
> per-connection basis, can we?

Currently not.  But I suppose a connection specific option to disable
handling roam events could be added.  I've pushed a prototype to the
aforementioned branch.


More information about the Dev mailing list