bunny-lab/docs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Update Networking/Sophos/IPSec Site-to-Site VPN Tunnel.md

Browse Source
This commit is contained in:
Nicole Rappe
2024-08-09 16:05:15 -06:00
parent c62d329951
commit 428d0896d6
1 changed files with 8 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
Networking/Sophos/IPSec Site-to-Site VPN Tunnel.md
View File

@ -55,17 +55,17 @@ Navigate to "**System > Profiles > IPSec Profiles > Custom_IKEv2_`<Initiator>/<R
=== "Initiator Phase Lifetime Values" === "Initiator Phase Lifetime Values"
| **Field** | **Value** | **Notes** | | **Field** | **Value** | **Notes** |
| :--- | :--- | | :--- | :--- | :--- |
| Phase 1 Lifetime | `<Longer Lifetime Compared to Phase 2>` | *Default Value*: `28800` | | Phase 1 Lifetime | `<Longer Lifetime Compared to Phase 2>` | *Default Value*: `28800` |
| Phase 2 Lifetime | `<Shorter Lifetime Compared to Phase 1>` | *Default Value*: `14400` | | Phase 2 Lifetime | `<Shorter Lifetime Compared to Phase 1>` | *Default Value*: `14400` |
=== "Responder Phase Lifetime Values" === "Responder Phase Lifetime Values"
| **Field** | **Value** | **Notes** | | **Field** | **Value** | **Notes** |
| :--- | :--- | | :--- | :--- | :--- |
| Phase 1 Lifetime | `<Longer Lifetime Compared to Phase 2>` | *Default Value + 300 Seconds*: `328800` | | Phase 1 Lifetime | `<Longer Lifetime Compared to Phase 2>` | *Default Value + 300 Seconds*: `328800` |
| Phase 2 Lifetime | `<Shorter Lifetime Compared to Phase 1>` | *Default Value + 300 Seconds*: `314400` | | Phase 2 Lifetime | `<Shorter Lifetime Compared to Phase 1>` | *Default Value + 300 Seconds*: `314400` |
!!! warning "Remote / Local Phase Lifetimes" !!! warning "Remote / Local Phase Lifetimes"
Within the context of the remote and local VPN tunnels, the lifetime of the Phase 1 and Phase 2 encryption keys needs to be shorter on the intiator than the responder sides of the VPN tunnel. Within the context of the remote and local VPN tunnels, the lifetime of the Phase 1 and Phase 2 encryption keys needs to be shorter on the intiator than the responder sides of the VPN tunnel.