On Fri, Sep 13, 2013 at 3:29 AM, Martin Willi <mar...@strongswan.org> wrote:
> The server tries to initiate an exchange, but the client does not > respond to it. After five retransmits, the server has to assume the > client is dead and closes the tunnel. Probably because of a DPD action > it tries to re-establish the IKE_SA, but it cant: Because EAP > authentication is asymmetric, only the client can re-initiate the > tunnel. Wanted to follow up and say: this was exactly right. I set the DPD delay to 60 minutes (3600s) and the problem went away completely. Thanks very much for your help. - Micah _______________________________________________ Users mailing list Users@lists.strongswan.org https://lists.strongswan.org/mailman/listinfo/users