Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

rekey

what is mean by rekey, rekey SA

fil# sh crypto isakmp sa

Active SA: 3

Rekey SA: 1 (A tunnel will report 1 Active and 1 Rekey S

Total IKE SA: 4

1 IKE Peer: 136.1.1.103

Type : L2L Role : responder

Rekey : no State : MM_REKEY_DONE_H2

2 IKE Peer: 132.1.1.103

Type : L2L Role : responder

Rekey : yes State : MM_ACTIVE_REKEY

3 IKE Peer: 141.253.161.196

Type : L2L Role : initiator

Rekey : no State : MM_ACTIVE

4 IKE Peer: 191.150.212.25

Type : L2L Role : initiator

Rekey : no State : MM_ACTIVE

1 REPLY
Silver

Re: rekey

When the connection is established, the VPN Client window stays in the foreground to allow the VPN client to be reauthenticated during a rekey by the VPN device. To send the VPN client window to the background, press Ctrl-Z and enter the bg command at the command line prompt. If the VPN device you are connecting to is configured to support rekeying and you send the VPN client window to the background, the tunnel disconnects when the first rekey occurs. The VPN client responds to rekey triggers based on time, not data. If you want VPN client connections rekeyed, you must configure the concentrator so that the IKE proposal is set to rekey every 1800 seconds and IPSec parameters are set to rekey every 600 seconds

770
Views
0
Helpful
1
Replies