[prev in list] [next in list] [prev in thread] [next in thread]
List: strongswan-announce
Subject: Re: [strongSwan-dev] crluri token and local files
From: Tobias Brunner <tobias () strongswan ! org>
Date: 2015-02-12 8:22:10
Message-ID: 54DC62B2.7010103 () strongswan ! org
[Download RAW message or body]
Hi Emeric,
> I have another question: this local crl file may be updated using an
> external script. However, the crl file once fetched seems to get
> cached inside the credential manager.
There are two caches, one is in-memory the other stores fetched CRLs in
ipsec.d/crls. The latter, in particular, is mostly useful for http://
or ldap:// URIs but it is not enabled by default (`cachecrls` option in
ipsec.conf). The in-memory cache, however, can't be disabled via
configuration but you may run `ipsec purgecrls` after you updated the
CRL to remove all CRLs from that cache.
Regards,
Tobias
_______________________________________________
Dev mailing list
Dev@lists.strongswan.org
https://lists.strongswan.org/mailman/listinfo/dev
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic