From 4a63cf51b0f34ac1512fdd4878d611412702b408 Mon Sep 17 00:00:00 2001
From: Niklas Hallqvist <niklas@cvs.openbsd.org>
Date: Thu, 14 May 1998 10:46:24 +0000
Subject: Explain exchange_lifetime a bit more

---
 sbin/ipsec/startkey/startkey.1 | 11 +++++++++--
 1 file changed, 9 insertions(+), 2 deletions(-)

(limited to 'sbin/ipsec/startkey')

diff --git a/sbin/ipsec/startkey/startkey.1 b/sbin/ipsec/startkey/startkey.1
index b55180606d3..7a190d64355 100644
--- a/sbin/ipsec/startkey/startkey.1
+++ b/sbin/ipsec/startkey/startkey.1
@@ -1,4 +1,4 @@
-.\" $OpenBSD: startkey.1,v 1.5 1998/05/13 12:29:36 niklas Exp $
+.\" $OpenBSD: startkey.1,v 1.6 1998/05/14 10:46:23 niklas Exp $
 .\" Copyright 1997 Niels Provos <provos@physnet.uni-hamburg.de>
 .\" All rights reserved.
 .\"
@@ -104,7 +104,14 @@ addresses match their respective options the packet will be routed into the
 tunnel.
 .It exchange_lifetime
 Determines the lifetime of the exchange. After an exchange expires
-no new SPIs are created.
+no new SPIs are created, which means the transport or tunnel is torn down
+as soon as the current SPI times out (see
+.Nm spi_lifetime
+below).  The default value is gotten from the
+.Nm exchange_lifetime
+parameter given in
+.Pa photuris.conf .
+If it is not given there the default is 1800 seconds.
 .It spi_lifetime
 Determines the lifetime of each created SPI in the exchange.
 .It user
-- 
cgit v1.2.3