Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
415
Views
5
Helpful
2
Replies

IPSec tunnel renegotiation with Watchguard Firebox

admin_2
Level 3
Level 3

‎04-08-2003 07:17 AM - edited ‎02-21-2020 12:27 PM

We have an ipsec tunnel with a watchguard firebox 1000. We need to set our cisco pix to renegotiate every 24 hours in order to keep the tunnel from going inactive. What is the syntax, etc to have our cisco pix renegotiate automatically every 24 hours. Any help is appreciated. Thanks. Robbie

Labels:
0 Helpful
2 Replies 2

gfullage
Cisco Employee
Cisco Employee

‎04-08-2003 06:19 PM

Phase 1 defaults to every 24 hours, so you don't need to do anything there.

Phase 2 defaults to 8 hours, sp tp change this to 24 do:

> crypto ipsec security-association lifetime seconds 86400

It won't take effect until the tunnel is rebuilt after the 8 hour expiry timer, or you can manually clear them on both ends if you like.

Not applicable
In response to gfullage

‎04-09-2003 05:12 AM

Thats what I thought from what I was seeing. Thanks for the info.

0 Helpful
Customers Also Viewed These Support Documents