Thanks Stefan. This is what I was thinking should be the case as well.
-----Original Message----- From: Stefan Fouant [mailto:[email protected]] Sent: Thursday, June 02, 2011 4:29 PM To: 'Devin Kennedy'; [email protected] Subject: RE: [j-nsp] IKE Key Life-times on J-series vs. SRX > -----Original Message----- > From: [email protected] [mailto:juniper-nsp- > [email protected]] On Behalf Of Devin Kennedy > Sent: Thursday, June 02, 2011 3:59 PM > To: [email protected] > Subject: Re: [j-nsp] IKE Key Life-times on J-series vs. SRX > > Does anyone know if the lifetime value used for the IKE session is > determined by the initiator? It appears from the behavior I've > observed that the lifetime value is always determined by whichever > peer is in the initiator role. That shouldn't be the case, but will need to do some digging. It should always be that the peers use the lesser of the two lifetime settings as their negotiated IKE SA lifetime. Stefan Fouant JNCIE-M #513, JNCIE-ER #70, JNCI GPG Key ID: 0xB4C956EC _______________________________________________ juniper-nsp mailing list [email protected] https://puck.nether.net/mailman/listinfo/juniper-nsp
