| Use dead peer detection |
Dead peer detection identifies inactive or unavailable IKE peers through ICMP
ping and can help restore resources that are lost when a peer is unavailable.
Selecting Use dead peer detection reestablishes VPN tunnels on
idle connections and cleans up dead IKE peers if required. Use this
option to receive notifications whenever a tunnel goes up or down, or to keep the
tunnel connection open when no traffic is being generated inside the tunnel. For
example, in scenarios where a dynamic DNS peer connects from an IP address that
changes periodically, traffic may suspend while the IP address changes.
|
| IKE
Debugging |
Select the check boxes of the following IKE debug options:
- Control—Shows IKE decision making
- Emitting—Shows the structure of output messages
- Parsing—Shows the structure of input messages
- Raw—Shows the raw bytes of messages
- Crypt—Shows the encryption and decryption status of
messages
|
| Current local public RSA
key |
Displays the current public portion of the local RSA key in a format that can be
copied and specified into remote devices that use IPsec RSA authentication.
|
| Regenerate local RSA
Key |
Regenerates the local RSA key with a different key length and overwrites the
currently installed RSA key.
|
