[strongSwan] Clients disconnect after 240 minutes

Martin Willi martin at strongswan.org
Tue Nov 27 09:20:19 CET 2012


Hi Tiago,

> Hmmm, probably the Win7 clients don't like re-authentication proposed
> by the strongSwan gateway. 

Also check that you use modp1024 as your first DH group, and let the
client initiate rekeying if it is behind NAT. See [1].

Regards
Martin

[1]http://wiki.strongswan.org/projects/strongswan/wiki/Windows7#Rekeying-behavior






More information about the Users mailing list