[strongSwan] INITIAL_CONTACT notify issue
yordanos beyene
yordanosb at gmail.com
Thu Sep 19 19:51:44 CEST 2013
Thank you very much Martin for clarifying how it works.
Jordan.
On Thu, Sep 19, 2013 at 12:07 AM, Martin Willi <martin at strongswan.org>wrote:
> Hi,
>
> > The old IKE_SA got deleted when the new and old IKE_SA use the same
> leftid
> > and rightid. The old IKE_SA did not get deleted when rightid is
> different.
>
> This is the intended behavior we have implemented in strongSwan.
>
> RFC 5996 says:
>
> > The INITIAL_CONTACT notification asserts that this IKE SA is the only
> > IKE SA currently active between the authenticated identities.
>
> Regards
> Martin
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20130919/529e074e/attachment.html>
More information about the Users
mailing list