Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
335
Views
5
Helpful
3
Replies

SIte to Site VPN

Ahmad Khalifa
Level 1
Level 1

‎03-02-2015 09:36 AM

Hi

i have small Question about the LifeTime=86400 for the SIte to Site VPN between two ASA5515

how to achieve lifetime Connection not limited open 24/7 , can i set lifetime =0 for unlimited time

if you know any reference to help me just share it with me

thank you  

Labels:
0 Helpful
3 Replies 3

petenixon
Level 3
Level 3

‎03-02-2015 10:10 AM

The lowest value possible on a 5500 series ASA is 120 seconds.

http://www.cisco.com/c/en/us/td/docs/security/asa/asa82/configuration/guide/config/ike.html

0 Helpful

rizwanr74
Level 7
Level 7

‎03-02-2015 10:32 AM

hello Ahmad,

 

IPSec vpn tunnel must have a tunnel life-time, it is for a security reason it has been created a such.

Reestablishing a tunnel after life-time is expired is seamless reestablishment, users cannot notice it.

 

thanks

Rizwan Rafeek

 

Kanwaljeet Singh
Cisco Employee
Cisco Employee

‎03-02-2015 10:33 AM

Yeah i agree with below and also even if you don't specify anything then the default value would used during the negotiation of SA's.

Regards,

Kanwal

Note: Please mark answers if they are helpful.

0 Helpful
Customers Also Viewed These Support Documents