printf(" --base-mtu=MTU %s\n", _("Indicate path MTU to/from server"));
printf(" -d, --deflate %s\n", _("Enable stateful compression (default is stateless only)"));
printf(" -D, --no-deflate %s\n", _("Disable all compression"));
- printf(" --force-dpd=INTERVAL %s\n", _("Set minimum Dead Peer Detection interval (in seconds)"));
+ printf(" --force-dpd=INTERVAL %s\n", _("Set Dead Peer Detection interval (in seconds)"));
printf(" --pfs %s\n", _("Require perfect forward secrecy"));
printf(" --no-dtls %s\n", _("Disable DTLS and ESP"));
printf(" --dtls-ciphers=LIST %s\n", _("OpenSSL ciphers to support for DTLS"));
.B \-\-force\-dpd=INTERVAL
Use
.I INTERVAL
-as minimum Dead Peer Detection interval (in seconds) for CSTP and DTLS, forcing use of DPD even when the server doesn't request it.
+as Dead Peer Detection interval (in seconds). This will cause the client to use
+DPD at the specified interval even if the server hasn't requested it, or at a
+different interval from the one requested by the server.
+
+DPD mechanisms vary by protocol and by transport (TLS or DTLS/ESP), but are all
+functionally similar: they enable either the VPN client or the VPN server to
+transmit a signal to the peer, requesting an immediate reply which can be used
+to confirm that the link between the two peers is still working.
.TP
.B \-g,\-\-usergroup=GROUP
Use
projects / users / dwmw2 / openconnect.git / commitdiff