[Openswan Users] NETKEY SA lifetime
Mike Horn
lists at caddisconsulting.com
Mon Feb 5 12:57:07 EST 2007
Hi,
It appears that the SA lifetime (hard or soft) is not being set in the
NETKEY SAD entries. What I'm mostly interested in is the "hard:" field for
the SA. This is set using the -lh extension if you are adding the entry
with "setkey add".
172.4.4.10 172.3.3.5
esp mode=tunnel spi=3597347870(0xd66b2c1e) reqid=16397(0x0000400d)
E: aes-cbc d31566a1 79a333a7 a25d3726 39cf9b7a 01f70645 5f87c0ff
98d3bbf3 5f054df9
A: hmac-sha1 614b29bc 58305971 9e2a104f 28f7cd10 6ff8fa12
seq=0x00000000 replay=32 flags=0x00000000 state=mature
created: Feb 5 12:04:44 2007 current: Feb 5 12:04:49 2007
diff: 5(s) hard: 0(s) soft: 0(s)
^ ** this is the value that I'm looking for **
last: hard: 0(s) soft: 0(s)
current: 0(bytes) hard: 0(bytes) soft: 0(bytes)
allocated: 0 hard: 0 soft: 0
sadb_seq=0 pid=10405 refcnt=0
Is there any way see the SA lifetime other than looking in the tunnel
configuration? Thanks!
-mike
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20070205/fa19deca/attachment.html
More information about the Users
mailing list