services.strongswan-swanctl.swanctl.connections.<name>.children.<name>.close_action
Action to perform after a CHILD_SA gets closed by the peer.
- The default of
nonedoes not take any action, trapinstalls a trap policy for the CHILD_SA.starttries to re-create the CHILD_SA.
close_action does not provide any guarantee that the
CHILD_SA is kept alive. It acts on explicit close messages only, but not
on negotiation failures. Use trap policies to reliably re-create failed
CHILD_SAs.
StrongSwan default: "none"
- Type
null or one of "none", "trap", "start"- Default
null- Declared
- <nixpkgs/nixos/modules/services/networking/strongswan-swanctl/module.nix>