[Openswan Users] Re: DPD

Paul Wouters paul at xelerance.com
Sun Jun 11 11:53:52 CEST 2006


On Thu, 8 Jun 2006, Brian Candler wrote:

> On Thu, Jun 08, 2006 at 10:55:48AM -0400, Snitgen, John wrote:
> > If I want to use on-demand mode on the Cisco, do I need to have DPD
> > enabled at all in my ipsec.conf on the Openswan side, or just configured
> > on the Cisco side?
>
> I don't know whether openswan will respond to DPD-R-U-THERE if DPD has not
> been enabled. If it does, then that should be fine.

Openswan always annoucnes the capability, and always responds to probes
thereafter if DPD is requested by the other end. It is an RFC requirement.

Paul


More information about the Users mailing list