I have been working on a lab deployment before going to production. I found that I had an issue with failover until I reduced the security-association lifetime to 120 seconds on the routers connecting to a PIX. I did not change anything on the PIX
I was wondering if this is going to be an issue with 20 or so routers negotiating their SA every couple of minutes?
How low have you run the security-association lifetime setting in real life production networks?
Do you see any issues with this