Skip to content
By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post
About re:Post

Does VPN Site to Site uses the LifeSize renegotiation option, I don't see it in the configuration values?

0

Greetings,

Does the LifeSize value in KB correspond to the Replay Window Size (packets) parameter? Alternatively, is there a default value used, or is it not applicable?

Topics
Networking & Content Delivery
Tags
AWS Virtual Private Network (VPN)Amazon VPCNetworking & Content Delivery
Language
English
asked 2 years ago420 views
1 Answer
1
Accepted Answer

There's no option for triggering the SA to be rekeyed based on the amount of data transferred. You can only configure the SA lifetime based on elapsed time.

The replay window is an unrelated security mechanism explained here: https://en.wikipedia.org/wiki/Anti-replay

EXPERT
answered 2 years ago
EXPERT
reviewed 2 years ago
EXPERT
reviewed 2 years ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Relevant content