Title: What Is the DPD Function of IPSec? [Print this page] Author: admin Time: 2017-5-4 20:26 Title: What Is the DPD Function of IPSec? What Is the DPD Function of IPSec? Author: admin Time: 2017-5-4 20:26
IPSec uses the Dead Peer Detection (DPD) function to detect whether the peer is alive, which is similar to the hello or keepalive mechanism. Currently, the DPD function on Ruijie devices supports two mechanisms:
1) on-demand mechanism: This mechanism triggers to send a DPD detection message only when the idle duration of a tunnel exceeds the configured time and a packet is transmitted at this time.
2) Periodic mechanism: This mechanism actively sends a DPD detection message after the idle duration of a tunnel exceeds the configured time. A maximum of five retransmission times are supported.
To configure the on-demand mechanism, run the following command: Ruijie(config)#cry isakmp keepalive 10 //Set the idletime of tunnels to 10 seconds and adopt the on-demand mechanism.
To configure the periodic mechanism, run the following command: cry isakmp keepalive 10 periodic/Set the idle time of tunnels to 10 seconds and adopt the periodic mechanism.
Welcome to Ruijie Community (https://community.ruijienetworks.com/)