From 4e28c3a4c331c05e7450ed3e785fd6c3697b540d Mon Sep 17 00:00:00 2001
From: TC1977 <37350377+TC1977@users.noreply.github.com>
Date: Wed, 27 Mar 2019 12:28:13 -0400
Subject: [PATCH] Update ipsec.conf.j2

Add server-side lifetimes
---
 roles/strongswan/templates/ipsec.conf.j2 | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/roles/strongswan/templates/ipsec.conf.j2 b/roles/strongswan/templates/ipsec.conf.j2
index 68fa3464..7cd27c90 100644
--- a/roles/strongswan/templates/ipsec.conf.j2
+++ b/roles/strongswan/templates/ipsec.conf.j2
@@ -9,6 +9,8 @@ conn %default
     keyexchange=ikev2
     compress=yes
     dpddelay=35s
+    lifetime=3h
+    ikelifetime=12h
 
 {% if algo_windows %}
     ike={{ ciphers.compat.ike }}