Hello, in the documentation WRT to Windows 7, it says that the client does not support server side CHILD SA rekeying. I have a swanctl-based installation of strongswan VPN server, and we are indeed plagued with Windows-specific rekeying problems.
I am planning to set the following parameters in connections.<conn>.children: rekey_time=0 life_time=80m Will this force the Windows native VPN client to initiate rekeying of the CHILD SA after 58 minutes 40 seconds? How about IKE SA rekey? Should I change the defaults for a Windows-based client? Greetings Marian
