looking for some help
We have around 60 DrayTek routers runnining site to site vpn and the vpn rekey's every 28800 but never dropped the connection while using ikev1
Since changing to ikev2 when the vpn rekeys at 28800 tunnel breaks conection and restarts which cause some issues with apps that we use
so in this example vpn will drop in 8 hours if i set to 600 will drop in 10 min then re-establish
ikev1 would stay up forever ?
just to note does the same on cisco router but will dont have to many of them
what is the ASA code running, can you send full information on ASA side for the IKEv2 config.
***** Rate All Helpful Responses *****
How to Ask The Cisco Community for Help
IKEv1 generate one key for phaseII IKEv2 generate multi (child)key for phaseII the mean problem with not re-key in phaseII of IKEv2 is PFS config and DH group mismatch
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: