[Swan] IKEv2 connection from Android drops after a few minutes
Beat Zahnd
beat.zahnd at gmail.com
Sun Mar 8 06:44:59 UTC 2020
Opened an issue on strongswan: https://wiki.strongswan.org/issues/3364
It seems that there is no way for an Android app to avoid that it is suspended. No keepalives can be sent and NAT will time out.
It was mentioned that a port change after NAT timeout shall be accepted by the server: https://tools.ietf.org/html/rfc7296#section-2.23 Is this feature missing on libreswan?
Is there a way to force the server to send NAT-T keep-alives to a server, just to keep the carrier NAT from timing out?
> On 5 Mar 2020, at 22:30, Paul Wouters <paul at nohats.ca> wrote:
>
> On iPhones, any wake up from sleep or network change will send a MOBIKE UPDATE message. I don’t know about strongswan client behaviour.
>
> It might be a strongswan bug.
More information about the Swan
mailing list