ikev2 rekey intervals[SOLVED]

jserink · October 23, 2020, 1:44am

Hi All:

In the Digi transports, the IKEv2 setup there these two entries:
Renegotiate after hrs mins secs
Rekey after hrs mins secs

Which one should be the bigger of the two?

Renegotiate to me means the entire renegotiation of the original IKE whereas the rekey to me means just rekeying the CILD_SA.
So the rekey should be shorted than the renegotiation.

Do I have that correct?

Cheers,
john

bengartland · November 3, 2020, 9:50am

Hi John,
Yes, the rekey is the CHILD_SA, this should be the shorter lifetime.
Regards,
Ben @ Digi support

Topic		Replies	Views
IKEV2 to Cisco rekeying every 11 seconds[SOLVED] Digi TransPort WR (Series) wr21 , ikev2 , rekeying	4	485	November 19, 2020
IKEV2 event log[SOLVED] Digi TransPort WR (Series) wr21 , ikev2	3	459	November 20, 2020
AN_58-Question[SOLVED] Digi TransPort WR (Series) psk , ikev2 , pre-shared-key	1	316	October 15, 2020
Digi -> Digi IPSEC VPN Drops Digi TransPort WR (Series) vpn , digi , wr21 , transport , ipsec	1	481	July 15, 2020
IPSec tunnel rebuilding every 60 seconds Digi TransPort WR (Series) cisco , ipsec , rebuilding	1	449	May 1, 2019

ikev2 rekey intervals[SOLVED]

Related topics