[strongSwan] "auto = try_again_later" on DNS problems?
Harald Dunkel
harald.dunkel at aixigo.de
Tue Jul 18 16:45:41 CEST 2017
On Tue, 18 Jul 2017 16:00:07 +0200
Harald Dunkel <harald.dunkel at aixigo.de> wrote:
> Hi Tobias,
>
> On Fri, 14 Jul 2017 13:59:05 +0200
> Tobias Brunner <tobias at strongswan.org> wrote:
>
> > Hi Harald,
> >
> > > I tried both "auto = start"
> >
> > You could set charon.retry_initiate_interval, then initiation will be
> > tried again if the DNS resolution failed.
> >
>
> Sorry, my bad. I had expected some connection specific config
> option, so I didn't look at the global options.
>
PS: I am not sure if charon.retry_initiate_interval = 0 is a
reasonable default. What are the odds that a local network admin
expects Strongswan to give up early in case of a DNS failure?
Maybe something like 300 would be a better choice?
Just a suggestion, of course. Regards
Harri
More information about the Users
mailing list