[strongSwan] Users Digest, Vol 16, Issue 22
张元玄
yuanakumazhang at gmail.com
Sun May 22 16:40:01 CEST 2011
sorry for my wrong expression.
I mean that I setup a connection,
the sequence of message is following.
1. IKE_SA_INIT
2. IKE_SA_INIT
3. IKE_AUTH
4. IKE_AUTH
when the connection was rekeyed,
*I found the sequence of strongswan is like this, w*hich will lost the
tunnel for a while.
to delete the exist connection
1. INFORMATIONAL (deleting IKE_SA)
2. INFORMATIONAL (deleting IKE_SA confirm)
to setup a new connection
3. IKE_SA_INIT
4. IKE_SA_INIT
5. IKE_AUTH
6. IKE_AUTH
but rfc 4306 is defined as this.
to setup a new connection
1. IKE_SA_INIT
2. IKE_SA_INIT
3. IKE_AUTH
4. IKE_AUTH
to delete the old one.
5. INFORMATIONAL (deleting IKE_SA)
6. INFORMATIONAL (deleting IKE_SA confirm)
I just want to know, the log which i got from strongswan is right or not.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20110522/a9b33a1c/attachment.html>
More information about the Users
mailing list