Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
298
Views
0
Helpful
2
Replies

never mind, got the answer!

Go to solution
lgontarsk
Level 1
Level 1

‎01-10-2008 08:32 AM - edited ‎03-09-2019 07:49 PM

Hi,

I am looking for the command to specify ipsec security association lifetime.

I see the command for setting the lifetime on the isakmp session, but not for the ipsec lifetime. The command I found online is not good in my IOS release...

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
ajagadee
Cisco Employee
Cisco Employee

‎01-10-2008 08:43 AM

What is the version of IOS that you are running on the router.

You could use

"crypto ipsec security-association lifetime seconds xxxx" in the configuration that lifetime will apply to all the crypto maps configured on the router.

To change the IPSEC lifetime for a specific router, you need to configure the IPSEC lifetime under that specific crypto map. For example:

crypto map TEST 10 ipsec-isakmp

set peer 10.1.1.1

set security-association lifetime seconds xx

match address 100

Regards,

Arul

View solution in original post

0 Helpful
2 Replies 2

Go to solution
ajagadee
Cisco Employee
Cisco Employee

‎01-10-2008 08:43 AM

What is the version of IOS that you are running on the router.

You could use

"crypto ipsec security-association lifetime seconds xxxx" in the configuration that lifetime will apply to all the crypto maps configured on the router.

To change the IPSEC lifetime for a specific router, you need to configure the IPSEC lifetime under that specific crypto map. For example:

crypto map TEST 10 ipsec-isakmp

set peer 10.1.1.1

set security-association lifetime seconds xx

match address 100

Regards,

Arul

0 Helpful

Go to solution
lgontarsk
Level 1
Level 1
In response to ajagadee

‎01-10-2008 08:45 AM

Thank you, that was a great response.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents