bunny-lab/docs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Update Networking/Sophos/IPSec Site-to-Site VPN Tunnel.md

Browse Source
This commit is contained in:
Nicole Rappe
2024-08-09 16:07:29 -06:00
parent 428d0896d6
commit a3b81a872a
1 changed files with 4 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
Networking/Sophos/IPSec Site-to-Site VPN Tunnel.md
View File

@ -57,15 +57,15 @@ Navigate to "**System > Profiles > IPSec Profiles > Custom_IKEv2_`<Initiator>/<R
| **Field** | **Value** | **Notes** | | **Field** | **Value** | **Notes** |
| :--- | :--- | :--- | | :--- | :--- | :--- |
| Phase 1 Lifetime | `<Longer Lifetime Compared to Phase 2>` | *Default Value*: `28800` | | Phase 1 Lifetime | *Default Value*: `28800` | `<Longer Lifetime Compared to Phase 2>` |
| Phase 2 Lifetime | `<Shorter Lifetime Compared to Phase 1>` | *Default Value*: `14400` | | Phase 2 Lifetime | *Default Value*: `14400` | `<Shorter Lifetime Compared to Phase 1>` |
=== "Responder Phase Lifetime Values" === "Responder Phase Lifetime Values"
| **Field** | **Value** | **Notes** | | **Field** | **Value** | **Notes** |
| :--- | :--- | :--- | | :--- | :--- | :--- |
| Phase 1 Lifetime | `<Longer Lifetime Compared to Phase 2>` | *Default Value + 300 Seconds*: `328800` | | Phase 1 Lifetime | *Default Value + 300 Seconds*: `328800` | `<Longer Lifetime Compared to Phase 2>` |
| Phase 2 Lifetime | `<Shorter Lifetime Compared to Phase 1>` | *Default Value + 300 Seconds*: `314400` | | Phase 2 Lifetime | *Default Value + 300 Seconds*: `314400` | `<Shorter Lifetime Compared to Phase 1>` |
!!! warning "Remote / Local Phase Lifetimes" !!! warning "Remote / Local Phase Lifetimes"
Within the context of the remote and local VPN tunnels, the lifetime of the Phase 1 and Phase 2 encryption keys needs to be shorter on the intiator than the responder sides of the VPN tunnel. Within the context of the remote and local VPN tunnels, the lifetime of the Phase 1 and Phase 2 encryption keys needs to be shorter on the intiator than the responder sides of the VPN tunnel.