IPSec Preferred Peer with DPD (dead peer detection).

Unanswered Question
Feb 16th, 2008

If I am utilizing "IPSec Preferred Peer with DPD (dead peer detection)", and my default peer drops. Will it pick back up automatically if it come back online, say like the next day.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
royalblues Mon, 02/18/2008 - 01:04

When you configure IPSEC preferred peer with DPD and the default peers drops, it would fall back to the next peer mentioned.

Manual intervention (clear crypto) was required to force it back to the primary peer as the SA's never used get deleted

However with the recent releases i have seen that this happnes but takes a longer time (about 3-4 minute)




This Discussion