Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
365
Views
5
Helpful
2
Replies

L2L VPN Quick Question

johnnymac
Level 1
Level 1

‎10-01-2007 04:23 AM - edited ‎03-03-2019 06:58 PM

Hi,

Just a quick question. I have a site to site VPN set up between two 515e's. I have recently rerouted the traffic that was previously traversing this link over a managed MPLS network. I was thinking i may keep the L2L VPN running as a failover option.

My question is would keeping the VPN link running use any significant overhead?

Regards

J Mack

Labels:
0 Helpful
2 Replies 2

haroon.shaikh
Level 1
Level 1

‎10-01-2007 05:56 PM

I dont think it should be of any overhead apart from normal keepalives. Also isakmp and ipsec will try to re-negotiate security associations after their lifetime is expired.

What you could do is set their security association lifetime to 1 day and they will re-negotiate them every 24 hours.

johnnymac
Level 1
Level 1
In response to haroon.shaikh

‎10-02-2007 01:27 AM

Thanks, thats really helpful.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card