Hi Sajal, > Query: Why is strongswan stack dependent on a successful response from peer > device to do the clean-up of an Expired SA. Shouldn't it clean-up the SAD > entry on its own, At least after n number of successful attempts? Not sure > what that "n" would be?
That issue with invalid responses from Juniper boxes should have been fixed with [1], available in 5.1.0 and newer. Regards Martin [1]http://git.strongswan.org/?p=strongswan.git;a=commitdiff;h=a6502426 _______________________________________________ Users mailing list [email protected] https://lists.strongswan.org/mailman/listinfo/users
