[strongSwan] Lots of reconnections for a rekey/reauth, and packet drops

Tobias Brunner tobias at strongswan.org
Tue Dec 5 15:54:58 CET 2017

Using auto=start on both ends in combination with uniqueids=yes and
closeaction=restart is a bad idea.  If a duplicate SA is created and
that's detected and the duplicate is then closed this deletion will
again trigger another SA, causing another duplicate and so on.


More information about the Users mailing list