Re: [Users] Automatically bringing up linux-linux VPN

From: Paul Wouters (paul_at_xtdnet.nl)
Date: Wed Jan 01 2003 - 17:34:28 CET

• Next message: Ruben I Safir: "Re: [Users] Windows RoadWarriors clients"
• Previous message: Markus Koellner: "Re: [Users] Windows RoadWarriors clients"
• In reply to: Segree, Gareth: "[Users] Automatically bringing up linux-linux VPN"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

On Tue, 31 Dec 2002, Segree, Gareth wrote:

> I have a script that pings the main office to see if it is up and if not it
> does a service ipsec restart.

Remember that when you restart one end of a freeswan tunnel, that the other
end will not talk to you until its keylife expires, since it expects only
crypted traffic, and no new connections.
If you have scripts on both sides restarting things, you probably force
the second one to restart a few minutes after the other end restarts.

There are patches to do this differently, look for "Delete/SA patch".

Paul

_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users

• Next message: Ruben I Safir: "Re: [Users] Windows RoadWarriors clients"
• Previous message: Markus Koellner: "Re: [Users] Windows RoadWarriors clients"
• In reply to: Segree, Gareth: "[Users] Automatically bringing up linux-linux VPN"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.5 : Thu Jan 02 2003 - 05:21:05 CET