Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
540
Views
0
Helpful
1
Replies

GETVPN : How to update the security policy from KS to GM instantaneously

susleman
Level 1
Level 1

‎03-04-2012 11:30 PM - edited ‎02-21-2020 05:55 PM

Hi,

I am just wondering how to push the security policy update in KS, eg. change of access-list, to GM immediately ?

If I am right, the update will wait until the rekey life time expired. I know I can exclude on each GM but if I have 500 GMs, it would be very difficult.

any workaround ?

thanks

-santo-

Labels:
0 Helpful
1 Reply 1

Marcin Latosiewicz
Cisco Employee
Cisco Employee

‎03-05-2012 02:01 AM

Santo,

It depends on what GDOI protocol your KS and GMs support.

It's only recently that we made a change so that new policies are not sent after change.

New versions let you control when update will be pushed (via command).

M.

0 Helpful
Customers Also Viewed These Support Documents