The DPD retry/retransmission can take up to around 2 minutes for IKEv2. Strongswan already exposes configurables for charon retransmision:
https://docs.strongswan.org/docs/latest/config/retransmission.html
Does VyOS provide any way to configure these too?
DPD interval/timeout is exposed in ike-group DPD settings.
IKE retransmission settings are not currently exposed in CLI. Feel free to make a feature request on https://vyos.dev for it.
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.