Hi, On Thu, Jun 08, 2017 at 10:00:50AM +0200, richard lucassen wrote: > Is there an option to run a peer to peer tunnel which is up (tun > devices are there), but remains completely silent and only becomes > active when data is routed through the tunnel? So no keepalive, no > initializing. > > IOW: a sort of encrypted version of an ipip tunnel. I think I can do > the trick using OpenSWAN (not sure), but I prefer OpenVPN.
If you do a peer-to-peer tunnel with static key, and no keepalive configured,
this is what it will do.
If you do TLS without keepalive, I think it will renegotiate ever so often
(like, every 12 hours) so you'll see marginal traffic even if there is
no activity - on the other side, the security level of TLS is much better,
so "static key" is not really recommended.
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany g...@greenie.muc.de
fax: +49-89-35655025 g...@net.informatik.tu-muenchen.de
signature.asc
Description: PGP signature
------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
