You are here: Home > CLI Commands > Just_CLI_Topics > crypto-local isakmp dpd

crypto-local isakmp dpd

crypto-local isakmp dpd idle-timeout <idle_sec> retry-timeout <retry_sec>  retry-attempts <retry_num>

Description

This command configures IKEInternet Key Exchange. IKE is a key management protocol used with IPsec protocol to establish a secure communication channel. IKE provides additional feature, flexibility, and ease of configuration for IPsec standard. DPDDead Peer Detection. A method used by the network devices to detect the availability of the peer devices. .

Syntax

Parameter

Description

Range

Default

idle-timeout <idle_sec>

Idle timeout, in seconds.

10-3600 seconds

22 seconds

retry-timeout <retry_sec>

Retry interval, in seconds.

2-60 seconds

2 seconds

retry-attempts <retry_num>

Number of retry attempts.

3-10

3

Usage Guidelines

DPDDead Peer Detection. A method used by the network devices to detect the availability of the peer devices. is enabled by default for site-to-site VPNs.

Example

The following command configures DPDDead Peer Detection. A method used by the network devices to detect the availability of the peer devices. parameters:

(host) [mynode] (config) #crypto-local isakmp dpd idle-timeout 60 retry-timeout 3 retry-attempts 5

Related Commands

Command

Description

show crypto-local isakmp

Displays the IKEInternet Key Exchange. IKE is a key management protocol used with IPsec protocol to establish a secure communication channel. IKE provides additional feature, flexibility, and ease of configuration for IPsec standard. DPDDead Peer Detection. A method used by the network devices to detect the availability of the peer devices.  configured on a managed device.

Command History

Release

Modification

ArubaOS 8.0.0.0

Command introduced.

Command Information

Platforms

Licensing

Command Mode

All platforms

Base operating system.

Config mode on Mobility Master.

/*]]>*/