[strongSwan] 24/7/365 tunnel?

Michael Schwartzkopff ms at sys4.de
Wed Sep 13 17:38:07 CEST 2017

Am 13.09.2017 um 17:33 schrieb Eric Germann:
> Usually if it "takes down the tunnel" it's due to no traffic. Keep interesting traffic going and it will stay up.
> If you have the ability to set "auto = route" it will reestablish the tunnel as needed. We run several hundred tunnels this way in AWS without issue.  
>> On Sep 13, 2017, at 09:21, Turbo Fredriksson <turbo at bayour.com> wrote:
>> I’m trying to setup a tunnel between two regions in
>> AWS.
>> Works fine, other than the fact that Strongswan seems to take
>> down the tunnel automatically (?) after a few hours.
>> How can I 1) make sure there’s no timeout (?) and 2) that IF
>> the tunnel goes down, for whatever reason, that it will reinitiate
>> the connection automatically?
Dead Peer Detection (DPD) sends packets that keep the tunnel up.

Michael Schwartzkopff

Mit freundlichen Grüßen,


[*] sys4 AG
https://sys4.de, +49 (89) 30 90 46 64
Schleißheimer Straße 26/MG,80333 München
Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263
Vorstand: Patrick Ben Koetter, Marc Schiffbauer, Wolfgang Stief
Aufsichtsratsvorsitzender: Florian Kirstein

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 230 bytes
Desc: OpenPGP digital signature
URL: <http://lists.strongswan.org/pipermail/users/attachments/20170913/428a5098/attachment.sig>

More information about the Users mailing list