[strongSwan] Regarding the anti-replay.

Tue Jun 10 22:11:11 CEST 2014

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Hello Bhargav,

There is no conn specific setting for that yet.

Regards,
Noel Kuntze

GPG Key id: 0x63EC6658
Fingerprint: 23CA BB60 2146 05E7 7278 6592 3839 298F 63EC 6658
Am 10.06.2014 18:18, schrieb bhargav p:
> Hi,
>
> Currently, I  am using the strongswan version-4.4.1. Currently, replay window size is hardcoded as 32.
>
> From the release notes of 4.5.2 noticed that replay window:
>
>   * In addition to ESN, Linux 2.6.39 gained support for replay windows larger
>     than 32 packets. The new global strongswan.conf <http://wiki.strongswan.org/projects/strongswan/wiki/Strongswanconf> option 'charon.replay_window'
>     configures the size of the replay window, in packets.
>
> Is there any way to configure the replay window  on basis per conn section instead of in strongswan.conf ?
>
> -- Bhargav
>
>
>
> _______________________________________________
> Users mailing list
> Users at lists.strongswan.org
> https://lists.strongswan.org/mailman/listinfo/users

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
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=Goni
-----END PGP SIGNATURE-----