[strongSwan] DPD issues when using multiple interfaces to same Gateway
Tobias Brunner
tobias at strongswan.org
Fri Apr 21 09:23:57 CEST 2017
Hi Marc,
> 1- Are DPD rules apply to individual tunnels? If one tunnel cannot
> communicate with the Gateway but other are, what happen if DPD timer
> expires in only one of them?
Yes, they apply to each IKE_SA individually.
> 2- When we set DPD action as restart, do we need to terminate the
> current IKE after DPD timer expires or it is done automatically?
The SA will be automatically restarted.
> 3- In our case DPD behavior depends if we have only one interface or
> we have multiple interface connected to same Gateway. It is working
> when we have only one interface.
Not sure what you mean.
Regards,
Tobias
More information about the Users
mailing list