Date: Fri, 11 Dec 2009 17:02:20 -0500 From: Mike Tancsa <mike@sentex.net> To: Jon Otterholm <jon.otterholm@ide.resurscentrum.se>, <freebsd-net@freebsd.org> Subject: Re: Racoon site-to site Message-ID: <200912112202.nBBM2Fli073479@lava.sentex.ca> In-Reply-To: <C7487BA6.31D78%jon.otterholm@ide.resurscentrum.se> References: <200912111923.nBBJNLk3072715@lava.sentex.ca> <C7487BA6.31D78%jon.otterholm@ide.resurscentrum.se>
next in thread | previous in thread | raw e-mail | index | archive | help
At 04:43 PM 12/11/2009, Jon Otterholm wrote:
> > Also, what does
> > sysctl net.key.preferred_oldsa
> >
> > show ?
>
>It has not jamed up yet but here is output from sysctl:
>
>net.key.preferred_oldsa: 1
>
>Would it help setting it to 0 to force renewal of keys at reconnection?
I think it should allow your end to honor the other side's new SA
should it want one ahead of schedule
---Mike
--------------------------------------------------------------------
Mike Tancsa, tel +1 519 651 3400
Sentex Communications, mike@sentex.net
Providing Internet since 1994 www.sentex.net
Cambridge, Ontario Canada www.sentex.net/mike
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200912112202.nBBM2Fli073479>