I have a few questions regarding site-to-site tunnel pre-shared keys.
Our company is in the process of security auditing and changing passwords. The location I am in has 3 tunnels with 3 other locations. I should mention we recently had a network intrusion, due to static route to an unsecured server.
How secure are the pre-shared keys used for the tunnels?
What encryption system do they have?
How easy are they to hack?
Should they be changed on a regular basis (like normal passwords)?
My dilemma is:
A) I like to make the firewalls as secure as possible
B) I do not want to create downtime (which changing shared keys will cause)
I appreciate it if someone could address my questions.
BTW I am somewhat of a beginner, and definitely not a pro!