Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
668
Views
0
Helpful
1
Replies

TCP conn after Phase 2 lifetime

jshailes1
Level 1
Level 1

‎07-14-2011 09:00 AM

I was wondering what happens when a tcp conn is active and the phase 2 lifetime is reached? Would the tunnel be re-established and the tcp connection live on or would a fin or rst be generated by the firewall or would something else happen?

Labels:
0 Helpful
1 Reply 1

Parminder Sian
Level 1
Level 1

‎07-20-2011 11:23 PM

Hi James,

Answer:

The TCP connection will live and wont go down.

Reason:

When phase 2 life time is about to expire, few seconds before that a new SPI is generated with all counters set to zero, so when the original phase 2 lifetime expires, second SPI takes over. This keep the TCP connection active.

Parminder Sian

0 Helpful
Customers Also Viewed These Support Documents