Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
359
Views
0
Helpful
1
Replies

Changing IKE policy will cause IPSec tunnel outage?

kay.kang
Level 1
Level 1

‎07-26-2022 06:22 PM

Hi,

I need to change the existing IKE policy(priority ID 1) with different parameter values.

But the IKE policy is already combined with IPSec tunnel already.

As my plan for this, I am going to copy the existing IKE policy to a new one with different priority ID

and replace the existing IKE policy with the new one. 

In this case, I am wondering if this IKE policy replacement will cause the exiting IPSec outage.

Labels:
0 Helpful
1 Reply 1

Rob Ingram
VIP
VIP

‎07-27-2022 12:01 AM

@kay.kang adding a new IKE policy would not affect the existing IPSec SA - so no outage. Create the new IKE policy with a higher priority ID, so if the new IKE policy is not matched for any reason, the IKE SA will still be established using the old IKE policy.

0 Helpful
Customers Also Viewed These Support Documents