[ previous ] [ next ] [ threads ]
 From:  Justin Ellison <justin at techadvise dot com>
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  RE: [m0n0wall] IPSec VPN Problem on Monowall 1.0
 Date:  Tue, 03 Aug 2004 08:25:20 -0500
On Tue, 2004-08-03 at 05:46, John Auld wrote:
> I would expect problems if I set the lifetimes manually and I set different
> lifetimes on the client and the server, so If I go the manual route, it
> seems sensible to set the lifetimes the same on both ends.

In m0n0wall's implementation, it will accept the P2 lifetime and PFS of
the initiator, due to the line 'proposal_check obey;' in racoon.conf. 
Not for sure on the P1...

Justin Ellison <justin at techadvise dot com>
signature.asc (0.2 KB, application/pgp-signature)