2.2.1.2.137 IKEV2_TUNNEL_CONFIG_PARAMS_1

The IKEV2_TUNNEL_CONFIG_PARAMS_1 structure<120> be used to get or set configured parameters for IKEv2 devices [RFC4306].


0


1


2


3


4


5


6


7


8


9

1
0


1


2


3


4


5


6


7


8


9

2
0


1


2


3


4


5


6


7


8


9

3
0


1

dwIdleTimeout

dwNetworkBlackoutTime

dwSaLifeTime

dwSaDataSizeForRenegotiation

dwConfigOptions

dwTotalCertificates

certificateNames (variable)

...

dwIdleTimeout (4 bytes): Duration, in seconds, after which the connection will be disconnected if there is no traffic. This value MUST be between 300 and 17,279,999.

dwNetworkBlackoutTime (4 bytes): Retransmission timeout, in seconds, for IKEv2 Request packets [RFC4306]. IKEv2 expects a response for every request packet sent, this value specifies the time after which the connection is deleted incase response is not received. This value MUST be greater than or equal to 120.

dwSaLifeTime (4 bytes): Lifetime of a security association (SA), in seconds, after which the SA is no longer valid [RFC4306]. This value MUST be between 300 and 17,279,999.

dwSaDataSizeForRenegotiation (4 bytes): Number of Kilobytes that are allowed to transfer using a SA. After that the SA will be renegotiated [RFC4306]. This value MUST be greater than or equal to 1024.

dwConfigOptions (4 bytes): Unused and MUST be set to 0.

dwTotalCertificates (4 bytes): Total number of certificates in member variable certificateNames.

certificateNames (variable): An array of CERT_BLOB_1.