swanctl: Document how connections.*.unique affects initiators

author: Tobias Brunner <tobias@strongswan.org> 2014-07-18 16:05:47 +0200
committer: Tobias Brunner <tobias@strongswan.org> 2014-09-09 10:56:15 +0200
commit: 8a59fa6467b0e600cfce1319f8dcd474aec84c86 (patch)
tree: f7f826b65c94cc7f8c9a38c0afabaf9a15045309
parent: dbd7f4be31210044e85f70a054d921a7176403fc (diff)
download: strongswan-8a59fa6467b0e600cfce1319f8dcd474aec84c86.tar.bz2
strongswan-8a59fa6467b0e600cfce1319f8dcd474aec84c86.tar.xz
1 files changed, 5 insertions, 0 deletions
diff --git a/src/swanctl/swanctl.opt b/src/swanctl/swanctl.opt
index 5e38a6673..f1e47a9e4 100644
--- a/src/swanctl/swanctl.opt
+++ b/src/swanctl/swanctl.opt
@@ -194,6 +194,11 @@ connections.<conn>.unique = no
 	EAP or XAuth authentication is involved, the EAP-Identity or XAuth username
 	is used to enforce the uniqueness policy instead.
 
+	On initiators this setting specifies whether an INITIAL_CONTACT notify is
+	sent during IKE_AUTH if no existing connection is found with the remote
+	peer (determined by the identities of the first authentication round).
+	Only if set to _keep_ or _replace_ will the client send a notify.
+
 connections.<conn>.reauth_time = 0s
 	Time to schedule IKE reauthentication.
author	Tobias Brunner <tobias@strongswan.org>	2014-07-18 16:05:47 +0200
committer	Tobias Brunner <tobias@strongswan.org>	2014-09-09 10:56:15 +0200
commit	8a59fa6467b0e600cfce1319f8dcd474aec84c86 (patch)
tree	f7f826b65c94cc7f8c9a38c0afabaf9a15045309
parent	dbd7f4be31210044e85f70a054d921a7176403fc (diff)
download	strongswan-8a59fa6467b0e600cfce1319f8dcd474aec84c86.tar.bz2 strongswan-8a59fa6467b0e600cfce1319f8dcd474aec84c86.tar.xz