Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
516
Views
0
Helpful
2
Replies

Session timeout when suing IPsec VPN

jimmy.joseph
Level 1
Level 1

‎01-23-2002 09:53 AM - edited ‎02-21-2020 11:34 AM

Hi,

Is SA life time same as Key life time?? Is there any default value for this??when a key/SA expires and new SA becomes live ..does it affect the data traffic..does packets gets dropped at the timeof change over?? or does the TCP sessions breaks??

IF my TCP sesion is idle at the time of key renewal ..does the session break?? Suppose the SA lifetime is 1 hrs..and my TCP session is idle for 1 hrs or more does it breaks the connection ??

Thanks and Regards,

jimmy.

Labels:
0 Helpful
2 Replies 2

ciscomoderator
Community Manager
Community Manager

‎01-30-2002 04:43 PM

Since there has been no response to your post, it appears to be either too complex or too rare an issue for other forum members to assist you. If you don't get a suitable response to your post, you may wish to review our resources at the online Technical Assistance Center (http://www.cisco.com/tac) or speak with a TAC engineer. You can open a TAC case online at http://www.cisco.com/tac/caseopen

If anyone else in the forum has some advice, please reply to this thread.

Thank you for posting.

0 Helpful

sheddsj
Level 1
Level 1

‎02-19-2002 08:52 AM

I believe the default lifetimes for SAs are 10000 for time and 3600 for data,SA rekeys should not effect traffic at all, the session should stay alive.

0 Helpful
Customers Also Viewed These Support Documents