Date: Thu, 04 Oct 2001 14:21:50 +0900 From: JINMEI Tatuya / =?ISO-2022-JP?B?GyRCP0BMQEMjOkgbKEI=?= <jinmei@isl.rdc.toshiba.co.jp> To: Guido van Rooij <guido@gvr.org> Cc: freebsd-net@FreeBSD.ORG Subject: Re: IPsec rekey question (bug in racoon?) Message-ID: <y7vhetg2d5d.wl@condor.jinmei.org> In-Reply-To: <20011003225701.A71045@gvr.gvr.org> References: <20011003130015.A68282@gvr.gvr.org> <20011003132235.C8391@blossom.cjclark.org> <20011003225701.A71045@gvr.gvr.org>
next in thread | previous in thread | raw e-mail | index | archive | help
>>>>> On Wed, 3 Oct 2001 22:57:01 +0200, >>>>> Guido van Rooij <guido@gvr.org> said: >> Why would it? The two simplex channels of a IPsec "connection" really >> have very little to do with each other. > Why? Because if one system reboots, the key is gone so there is no way > to decrypt the incoming traffic any more? Please clarify, are you using automatic key negotiation (e.g. using IKE), or are you manually configuring the keys? The situation may differ according to the configuration. JINMEI, Tatuya Communication Platform Lab. Corporate R&D Center, Toshiba Corp. jinmei@isl.rdc.toshiba.co.jp To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?y7vhetg2d5d.wl>