[strongSwan] Retries after authentication failure

Hoggins! hoggins at radiom.fr
Sat Jul 29 12:59:49 CEST 2017

Hello list,

I know it's been discussed here and also on the Wiki, but here's the thing :

We have several clients connecting to a Strongswan server, and for some
reason charon failed on the server (with a kernel OOM, we'll have to
investigate that), and restarted. Great. But it could not find the
credential files (PSK) when it got back to life, as these were
unavailable at the moment (failed network filesystem, our problem).

And of course, when reconnecting, the clients got authentication
failures back.

So it's known that the clients won't retry to connect afterwards. But
anyway, and without asking for a feature inside Strongswan, I was
wondering if you guys had had similar needs and had figured out how to
trigger a retry anyway on client side.

Thanks !


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 209 bytes
Desc: OpenPGP digital signature
URL: <http://lists.strongswan.org/pipermail/users/attachments/20170729/84c747b0/attachment.sig>

More information about the Users mailing list