[Swan] reauth option
John Crisp
jcrisp at safeandsoundit.co.uk
Fri Aug 30 17:29:54 UTC 2019
On Thu, 29 Aug 2019 20:08:29 +0200
Vukasin Karadzic <vukasin.karadzic at gmail.com> wrote:
> Hi,
>
> that option should enable using reauthentication of IKE SAs instead of
> rekeying them
> as per RFC7296 Section 2.8.3 (
> https://tools.ietf.org/html/rfc7296#section-2.8.3.),
> when libreswan is the initiator of rekeying (that is,
> reauthentication in this case).
OK. Not sure how to you would force that, or why Endian/StrongSwan
fails.
> And yes, it isn't documented in man pages.
>
Interesting...
> Don't know if that will help you solve your problem.
Me neither - it answers one question and asks another!
Thanks
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 473 bytes
Desc: OpenPGP digital signature
URL: <https://lists.libreswan.org/pipermail/swan/attachments/20190830/db14ea13/attachment.sig>
More information about the Swan
mailing list