From 132689a3b878d1afa32a6b3c28b232113956bd9b Mon Sep 17 00:00:00 2001
From: "Dustin C. Hatch" <dustin@hatch.name>
Date: Sat, 10 Oct 2020 11:10:12 -0500
Subject: [PATCH] roles/protonvpn: Set infinite keying retries

By default, strongSwan will only attempt key negotiation once and then
give up.  If the VPN connection is closed because of a network issue, it
is unlikely that a single attempt to reconnect will work, so let's keep
trying until it succeeds.
---
 roles/protonvpn/templates/protonvpn.conf.j2 | 1 +
 1 file changed, 1 insertion(+)

diff --git a/roles/protonvpn/templates/protonvpn.conf.j2 b/roles/protonvpn/templates/protonvpn.conf.j2
index 50ba0ed..8ba5f41 100644
--- a/roles/protonvpn/templates/protonvpn.conf.j2
+++ b/roles/protonvpn/templates/protonvpn.conf.j2
@@ -11,6 +11,7 @@ connections {
             auth = pubkey
         }
         children {
+	    keyingtries = 0
             dpd_delay = 30s
             protonvpn {
                 remote_ts = {{ protonvpn_tunnel }}