good morning,
i am trying to understand why if i set DPD to 10 sec on both side of ipsec, if i disconnect one eth side, the “sh vpn ipsec sa” keeps showing me UP for MINUTES…what am i doing wrong/not understand?
thank you.
I guess DPD is only applicable for IKEv1
no it is also for ikev2
https://docs.vyos.io/en/stable/configuration/vpn/ipsec.html
Did you set interval to 10 sec? Another setting is time-out , which defaults to 120 sec. Which resembles your minutes.
This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.