[strongSwan-dev] Any route change triggers unexpected IKE-SA reauth if left is not on output interface

Christophe Gouault christophe.gouault at 6wind.com
Tue Nov 15 16:52:33 CET 2016

Hi Tobias,

Thank you very much.
I'll do a few tests with this branch.


2016-11-15 16:37 GMT+01:00 Tobias Brunner <tobias at strongswan.org>:
> Hi Christophe,
>> If the left address is specified and mobike is disabled for  a
>> connection, this reauth will anyway not entail a change of the source
>> address. Would it makes sense to add an exception for such case?
> I guess we could.  I've pushed a commit to the roam-ignore branch.  Not
> sure if this has any unwanted side-effects.
>> I don't use mobike for this connection, but I may enable it on other
>> connections. I guess we cannot ignore routing events on a
>> per-connection basis, can we?
> Currently not.  But I suppose a connection specific option to disable
> handling roam events could be added.  I've pushed a prototype to the
> aforementioned branch.
> Regards,
> Tobias

More information about the Dev mailing list