On Tue, 2004-08-03 at 05:46, John Auld wrote:
> I would expect problems if I set the lifetimes manually and I set different
> lifetimes on the client and the server, so If I go the manual route, it
> seems sensible to set the lifetimes the same on both ends.

In m0n0wall's implementation, it will accept the P2 lifetime and PFS of
the initiator, due to the line 'proposal_check obey;' in racoon.conf. 
Not for sure on the P1...

-- 
Justin Ellison <justin at techadvise dot com>