Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
222
Views
1
Helpful
2
Replies

Cisco ASA ASA5545 Site2site IPSEC Lifetime Phase 1 and Phase 2

Go to solution
chris-doro
Level 1
Level 1

‎05-23-2024 05:44 AM

I've setup a VPN site2site-tunnel with the ASDM wizard.
But I'm still not sure aboute some parameters.
In almost every Site2site tunnel I've configured I had the option for 2 timers: Phase 1 (which is usually the longer) and Phase2.
But on the ASA there is only one parameter.
I need phase 1 28800 seconds and phase 2 3600 seconds.
But which one is now the set security-association lifetime seconds 28800?
And where is the other?
I do not see it in GUI nor in CLI.
Any suggestions?
Thanks.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
MHM Cisco World
VIP
VIP

‎05-23-2024 05:47 AM - edited ‎05-23-2024 06:05 AM

Set security-association lifetime seconds 28800 <- this for phaseII

Under crypto ike1 policy 

Add lifetime <- this for phaseI

MHM

View solution in original post

0 Helpful
2 Replies 2

Go to solution
MHM Cisco World
VIP
VIP

‎05-23-2024 05:47 AM - edited ‎05-23-2024 06:05 AM

Set security-association lifetime seconds 28800 <- this for phaseII

Under crypto ike1 policy 

Add lifetime <- this for phaseI

MHM

0 Helpful

Go to solution
MHM Cisco World
VIP
VIP
In response to MHM Cisco World

‎05-23-2024 06:33 AM

how you can config the lifetime and how you can check it 

Screenshot (488).pngScreenshot (489).pngScreenshot (490).png

Customers Also Viewed These Support Documents