515e l2l Idle Timeout

Unanswered Question
Jun 15th, 2007


I have a couple of l2l vpns running to other 515e's. When i look in the monitoring section of the ASDM it shows

Idle Time Out: 30 minutes

In the Ipsec section. I can't find a value for this in the CLI, does anyone know if its configurable?


J Mack

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Jon Marshall Fri, 06/15/2007 - 08:46


In the CLI there will be 2 timouts

1) Phase 1 - look for a "crypto isakmp polci "no" lifietime" line.

2) Phase 2 - look for a "crypto map "map name" "no" set security association lifetime" line.

You can modify both but be aware that you would need to modify the other end of your VPN tunnel as well or the IPSEC tunnel might not work.




This Discussion