[strongSwan] Regarding the anti-replay.

bhargav p bhargav.1226 at gmail.com
Tue Jun 10 18:18:22 CEST 2014


Hi,

Currently, I  am using the strongswan version-4.4.1. Currently, replay
window size is hardcoded as 32.

>From the release notes of 4.5.2 noticed that replay window:


   - In addition to ESN, Linux 2.6.39 gained support for replay windows
   larger
   than 32 packets. The new global strongswan.conf
   <http://wiki.strongswan.org/projects/strongswan/wiki/Strongswanconf> option
   'charon.replay_window'
   configures the size of the replay window, in packets.

Is there any way to configure the replay window  on basis per conn section
instead of in strongswan.conf ?

-- Bhargav
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20140610/391d0095/attachment.html>


More information about the Users mailing list