[Openswan Users] Tunnel hibernation

pw at linuxops.net pw at linuxops.net
Tue Apr 5 11:44:29 CEST 2005


I have an OpenSWAN server to which several clients (linux/OpenSWAN, BSD)
connect. The tunnels establish fine, and work too...for a while. After some
time of inactivity the ipsec tunnels seem to go into hibernation mode, and
traffic initiated from the client side is not getting through. However, when
the server side initiates traffic the tunnel comes back alive, and
communication back and forth is possible again. Currently I'm using OpenSWAN
2.3.0 with KLIPS26 on a 2.6.10 kernel. I've also seen this behaviour with
NETKEY on the same kernel and config.

Maybe something in my config, I generally set transport=yes and compress=yes,
but I think without these the same problem occurs. Has anyone seen the
behaviour before, is it a known problem which can be solved? A solution would
be to have the server send keepalive packets, but if I don't have to...


Ferdinand O. Tempel

This message was sent using IMP, the Internet Messaging Program.

More information about the Users mailing list