Long Certificate Renegotiation Times
Posted: Mon Jan 21, 2019 8:31 pm
I'm looking for a place to start troubleshooting this issue I have.
I'm using the latest Access Server with local authentication. Connections are made over UDP, although I am running in dual daemon mode (both UDP and TCP), and have enabled auto-logon.
I've also tested authentication with the authcli script which succeeds instantaneously. The initial client vpn connection also happens within seconds.
The problem arises during renegotiation only, where it takes upwards of 2 minutes to renegotiate and re-authenticate the new key.
I have considered just increasing the time before renegotiation, but I figured I'd start by asking if this long delay is typical, and if not, where I can start troubleshooting why it takes so long.
Thanks all!
I'm using the latest Access Server with local authentication. Connections are made over UDP, although I am running in dual daemon mode (both UDP and TCP), and have enabled auto-logon.
I've also tested authentication with the authcli script which succeeds instantaneously. The initial client vpn connection also happens within seconds.
The problem arises during renegotiation only, where it takes upwards of 2 minutes to renegotiate and re-authenticate the new key.
I have considered just increasing the time before renegotiation, but I figured I'd start by asking if this long delay is typical, and if not, where I can start troubleshooting why it takes so long.
Thanks all!