Hi, I've successfully set up the IPSec tunnel and the remote side can connect to both our public ip. As a result, 4 SAs are being created. Data is received on both inbound SAs, but I can only send packets to one outbound SA, depending on which one is established first. If I remove such SA via "ipsectl -d " the other one will be used immediately, but I would like to do so without deleting it because it will take some time before the remote side realizes this and negotiates new SAs. Is this possible?
Thanks -- Sent from: http://openbsd-archive.7691.n7.nabble.com/openbsd-user-misc-f3.html
