I a somewhat new to vyos. I manage a network of 4 vyos 1.1.7 routers in AWS. Sometimes the vti tunnels go down and I have to reset that vpn tunnel.
I came across the command set vpn ipsec auto-update ‘60’. I have tried it but still from time to time a tunnel will go down.
What does thatcommand actually do?
I can see for the docs that it is used for reconnecting to DDNS sites when their IP address changes. My sites are are static IP. Does that mean that this command does nothing unless there are remote tunnel targets that have a DNS name instead of IP address.
I have read that the beta version of vyos has a new version of Strongswan that may help.
Any suggestions would be appreciated.