[strongSwan] Rekeying on Windows
Marian Kechlibar
marian.kechlibar at circletech.net
Mon Jan 15 15:33:54 CET 2018
Hello,
in the documentation WRT to Windows 7, it says that the client does not
support server side CHILD SA rekeying. I have a swanctl-based
installation of strongswan VPN server, and we are indeed plagued with
Windows-specific rekeying problems.
I am planning to set the following parameters in
connections.<conn>.children:
rekey_time=0
life_time=80m
Will this force the Windows native VPN client to initiate rekeying of
the CHILD SA after 58 minutes 40 seconds?
How about IKE SA rekey? Should I change the defaults for a Windows-based
client?
Greetings
Marian
More information about the Users
mailing list