[Swan] IKEv1 and a lost UDP packet
Kevin Wilson
wkevils at gmail.com
Sun Oct 20 20:39:57 EEST 2013
Hello, Paul
Thanks a lot for the quick response!
Sorry for my ignorance, I don't know the libreswan implementation
Does it mean that after 3 trials the session it terminated in case not
getting response ?
(to be more specific: first trying after 20, then second again at 20,
and third at 40 seconds, and not receiving a response will entail
session termination ?
Best Regards,
Kevin
On Sun, Oct 20, 2013 at 6:32 PM, Paul Wouters <paul at nohats.ca> wrote:
> On Sun, 20 Oct 2013, Kevin Wilson wrote:
>
>> I have a question about IKEv1:
>> What happens if a UDP packet of request (or response) is lost?
>>
>> In the RFC of IKEv2 there is a mechanism of timers, retransmission and
>> acknowledgement for *every* UDP packet of request/response
>> as part of the RFC.
>>
>> In IKEv1, we do not have this AFAIK.
>
>
> Both ends end up retransmitting with a backoff of 20,20,40 seconds.
>
> We are about to change that for libreswan 3.6 to be much more aggressive,
> like 1,1,2,4,8,.. seconds.
>
> Paul
More information about the Swan
mailing list