1 Reply Latest reply on Aug 16, 2011 4:18 PM by sherr

    IPSec Hard Limits and Lifetimes

      Apart from the slightly reduced level of security of running with a higher IPSec IKE Hard Limit than the standard 3600, has anyone got any good or bad points about upping it to the maximum 10000 seconds? 


      The same goes for the Rekey Hard Lifetime value of 700 (default), assuming we use AES 256/SHA1, is there any reason to leave the values at the low default values?