Section 35.3.25, Section 35.3.26, Section 35.3.27 – Westermo RedFox Series User Manual
Page 833
Westermo OS Management Guide
Version 4.17.0-0
35.3.25
Configure Dead Peer Detection Delay
Syntax [no] dpd-delay <SECONDS>
Context
context
Usage Set the DPD probing interval. The DPD delay is the interval between DPD
probing messages sent by this VPN gateway. (The DPD delay setting on the
two peers are independent, thus they may differ.)
Use ”no dpd-delay” to return to the default setting.
Use ”show dpd-delay” to show the configured DPD delay setting (in sec-
onds).
Default values 30 (seconds)
35.3.26
Configure Dead Peer Detection Timeout
Syntax [no] dpd-timeout <SECONDS>
Context
context
Usage Set the DPD timeout. If a period corresponding to the DPD timeout
elapses without getting any response on the DPD probe messages, the VPN
gateway considers the peer to be down.
Use ”no dpd-timeout” to return to the default setting.
Use ”show dpd-timeout” to show the configured DPD timeout setting (in
seconds).
Default values 120 (seconds)
35.3.27
Configure IKE Lifetime
Syntax [no] ike-lifetime <SECONDS[s] | MINUTESm | HOURSh | DAYSd>
Context
context
Usage Set the IKE (phase 1) security association lifetime. When this time has
passed, a new phase 1 negotiation will be initiated. The remote peer may
use a different value. In that case, the peer with the lowest timeout will
initiate the renegotiation first.
➞ 2015 Westermo Teleindustri AB
833