CET generates new session keys every 30 minutes (by default). In some instances I am seeing this take several retries and several minutes to successfuly happen. The end result is lost sessions during this time. Is there a way to prevent this?
You could try upgrading to newer IOS. Sounds like a bug to me. You might consider migrating to IPSec instead of CET. I don't think Cisco is fixing bugs on CET anymore.
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.