[Openswan Users] problems with vpn between cisco and openswan
Michael Stevens
michael.stevens at dianomi.com
Tue Dec 15 05:37:41 EST 2009
2009/12/14 David McCullough <David_Mccullough at securecomputing.com>
> It's might be dying when the Cisco rekeys. Try setting your keylife to
> 3600 (1 hour) and see how that goes.
>
After a lot of discussion with the people running the cisco end of the
tunnel I've set:
salifetime= 28800s
ikelifetime= 86400s
which we think is what the cisco is set to.
I'm seeing two behaviours - sometimes it goes down and stays down, sometimes
it manages to come back.
openswan appears to think the tunnel is up, I just can't send traffic over
it.
--
Michael Stevens
Dianomi Ltd
18 Buckingham Gate
London SW1E 6LB
Tel: 020 7802 5530
Fax: 020 7630 7356
www.dianomi.com
The information in this message and any attachment is intended for the
addressee and is confidential and may be subject to legal privilege. Dianomi
Ltd, Registered Office: One America Square, Crosswall, London. EC3N 2SG.
Registered in England and Wales with Company Registration Number 4513809.
VAT registration number: 809754988
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20091215/48fd9eff/attachment.html
More information about the Users
mailing list