[Swan] IKEv1 and a lost UDP packet
Paul Wouters
paul at nohats.ca
Sun Oct 20 18:32:25 EEST 2013
On Sun, 20 Oct 2013, Kevin Wilson wrote:
> I have a question about IKEv1:
> What happens if a UDP packet of request (or response) is lost?
>
> In the RFC of IKEv2 there is a mechanism of timers, retransmission and
> acknowledgement for *every* UDP packet of request/response
> as part of the RFC.
>
> In IKEv1, we do not have this AFAIK.
Both ends end up retransmitting with a backoff of 20,20,40 seconds.
We are about to change that for libreswan 3.6 to be much more aggressive,
like 1,1,2,4,8,.. seconds.
Paul
More information about the Swan
mailing list