[Openswan Users] Clarification on dpdaction=clear

users-bounces at lists.openswan.org users-bounces at lists.openswan.org
Wed Sep 11 11:50:30 UTC 2013

Rescued from the spam bucket.  Please remember to subscribe to the mailing list before posting to it.

From: Elison Niven <elison.niven at cyberoam.com>
Subject: Re: [Openswan Users] Clarification on dpdaction=clear
Date: 11 September, 2013 7:49:51 AM EDT
To: divya mohan <m.divya.mohan at zoho.com>
Cc: users at lists.openswan.org

dpdaction=clear means that IPSec connection will not be reestablished.
Please read the man page for more details. The openswan book (although quite old) will also help you.

On Wednesday 11 September 2013 03:47:57 PM IST, divya mohan wrote:
> There is an IPSec connection like : Host A [initiator]--- Host B [responder].
> dpdaction=clear is configured on Host A.
> The connection between two hosts got broken (assume Host B was shutdown).
> Does the 'clear' means clearing IPSec security association, so that
> later if Host B comes up, IPSec tunnel will be re-established?
> Or does 'clear' means that the security policies will be cleared, so
> that later of Host B comes up, plain (un-encrypted) traffic will be
> sent?
> _______________________________________________
> Users at lists.openswan.org
> https://lists.openswan.org/mailman/listinfo/users
> Micropayments: https://flattr.com/thing/38387/IPsec-for-Linux-made-easy
> Building and Integrating Virtual Private Networks with Openswan:
> http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155

Best Regards,
Elison Niven

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openswan.org/pipermail/users/attachments/20130911/0820ece7/attachment.html>

More information about the Users mailing list