[Openswan Users] Clarification on dpdaction=clear

divya mohan m.divya.mohan at zoho.com
Wed Sep 11 10:17:57 UTC 2013

There is an IPSec connection like : Host A [initiator]--- Host B [responder].

dpdaction=clear is configured on Host A.

The connection between two hosts got broken (assume Host B was shutdown).

Does the 'clear' means clearing IPSec security association, so that
later if Host B comes up, IPSec tunnel will be re-established?
Or does 'clear' means that the security policies will be cleared, so
that later of Host B comes up, plain (un-encrypted) traffic will be

More information about the Users mailing list