Dead peer detection, Dpd idle period, Dpd number of transmits – Nortel Networks 608(WL) User Manual

Chapter 6

Advanced Features

E-DOC-CTC-20051017-0169 v0.1

202

Dead Peer Detection

The SpeedTouch™ supports the Dead Peer Detection protocol.

By default, the use of this protocol is enabled. This option allows disabling the use
of the DPD protocol.

DPD Idle Period

The DPD protocol defines a worry period. This is an idle time during which no IPSec
traffic is detected from the remote peer. At the expiry of this period the local peer
transmits a number of R-U-THERE messages to detect the liveliness of the remote
peer.

This option sets the duration of the idle period, expressed in seconds.

DPD number of

Transmits

This option determines the number of R-U-THERE transmitted by the local peer. If
none of these messages is acknowledged in due time by the remote peer, it is
decided that the remote peer is dead.

DPD Timeout

This option determines the timeout value for the R-U-THERE messages. Within this
period an R-U-THERE acknowledge message from the remote peer is expected.

Tunnel inactivity timeout

When no traffic is detected at the peer for a certain period, it is decided that the
tunnel is not used any more, and the IKE session is terminated. All IPSec
connections supported by the IKE session are terminated as well.

This option sets the value of the inactivity timer.

DPD

Possible values

default value

enabled
disabled

enabled

dpd_idle_period

Unit

default value

seconds

180

dpd_xmits

default value

3

dpd_timeout

Unit

default value

seconds

120

inactivity

Unit

default value

seconds

3600