[Swan-dev] Regression with IKEv1 XAUTH in current git
Tuomo Soini
tis at foobar.fi
Wed Feb 27 13:54:37 UTC 2019
On Wed, 27 Feb 2019 08:41:57 -0500 (EST)
Paul Wouters <paul at nohats.ca> wrote:
> On Wed, 27 Feb 2019, Tuomo Soini wrote:
>
> > We had issue that IKEv1 XAUTH didn't work with other
> > implementations.
> >
> > That issue was fixed by Paul as of
> > 7b424f52fffa00d0cb114720c136139318a71142.
> >
> > But there is still an issue with DPD with XAUTH clients after this.
> > After DPD timeout time libreswan just drops vpn connection.
>
> Isn't that what DPD timeouts are for?
Not when tunnel is working completely fine. With 3.27 tunnels just
continue to work after dpdtimeout.
--
Tuomo Soini <tis at foobar.fi>
Foobar Linux services
+358 40 5240030
Foobar Oy <https://foobar.fi/>
More information about the Swan-dev
mailing list