Answer the question
In order to leave comments, you need to log in
Why does ipsec tunnel periodically drop connection?
Good afternoon, ipsec libreswan is configured on centos7, the connection periodically disappears (once a day for a couple of minutes, maybe less often) and it recovers itself, there is nothing like that in the logs, tell me where to look for the problem?
Answer the question
In order to leave comments, you need to log in
He doesn't lose. He deliberately rips it up. To restart the encryption key exchange process. To exclude any effects such as even a theoretical possibility to tie the key. IPSec was done by a tsiska, if so. This is a serious thing.
Replacing the encryption key of the second stage (which the parties agreed on inside the tunnel built on the keys of the first stage) for me, for example, once every half an hour. Full replacement of keys - the first and second stages - every two hours. How you set it up, I don't know.
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question