Use dead peer detection |
Dead peer detection identifies inactive or unavailable IKE peers through ICMP
ping and can help restore resources that are lost when a peer is unavailable.
Selecting Use dead peer detection reestablishes VPN tunnels on
idle connections and cleans up dead IKE peers if required. administrators can use
this
option to receive notifications whenever a tunnel goes up or down, or to keep the
tunnel connection open when no traffic is being generated inside the tunnel. For
example, in scenarios where a dynamic DNS peer connects from an IP address that
changes periodically, traffic may suspend while the IP address changes.
|
IKE
Debugging |
Select the check boxes of the following IKE debug options:
- Control—Shows IKE decision making
- Emitting—Shows the structure of output messages
- Parsing—Shows the structure of input messages
- Raw—Shows the raw bytes of messages
- Crypt—Shows the encryption and decryption status of
messages
|
Current local public RSA
key |
Displays the current public portion of the local RSA key in a format that can be
copied and specified into remote devices that use IPsec RSA authentication.
|
Regenerate local RSA
Key |
Regenerates the local RSA key with a different key length and overwrites the
currently installed RSA key.
|