Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

VPN site to site adminsitration

Should/how often  do I need to change the PSKs for VPN tunnels.  Why aren't the PSKs encrypted in the configuration   or is this an option?

Thanks

2 REPLIES

Re: VPN site to site adminsitration

You don't really need to change the PSK's often, dynamic IPSEC keys are used for Phase 2 of the VPN and they are renegotiated every 8 hours default.

Sounds like your config is on a router?

New Member

Re: VPN site to site adminsitration

Thanks Andrew, yes this is a site to site VPN between two 2811 routers. Obvoiusly I lack a clear understanding of how the encryption process works in this case, so I don't really understand if I need to afford the PSK the same protection as a secret key

174
Views
0
Helpful
2
Replies