[strongSwan] ipsec rereadcrls command effect
anuj01 at gmail.com
Wed Jun 5 15:59:18 CEST 2013
As per wiki :
reads all Certificate Revocation Lists (CRLs) contained in the
and adds them to the list of CRLs. Older CRLs are replaced by
newer ones. Implemented by calling the ipsec
Does by executing this command, already established Ipsec SA would be
destroyed in case revoked certificates are used in establishing the tunnel?
If yes, then we are not observing this behavior on Strongswan 4.5.3. The
ipsec SAs remain established even the certificates are revoked.
Thanks & Regards,
: :Ⓐ : # apt-get install hakuna-matata
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Users