[strongSwan] After a failed CHILD_SA rekey, rekey attempt is being continuously done

[m.divya.mohan]

Hi,

Sorry, I did not understand how this could be an issue with Juniper.
Could you please elaborate on this.

When the rekey attempt fails, shouldn't charon delete this SA after a limited number of retries, instead of infinitely trying to rekey?

- Divya 

--
> Hello,
>
> That is a known issue and is caused by certain Juniper firmwares returning wrong SPI numbers.
> To work around this issue, disable rekeying (rekey=no) and reauthenticate instead.
>
> Regards,
> Noel Kuntze