Cisco Bug: CSCup34685 - IKEv2 sessions expire and terminate after failover if 120 sec IKE rekey
Apr 16, 2020
- Cisco ASA 5500-X Series Firewalls
Known Affected Releases
Symptom: IKEv2 VPN sessions are terminated after a failover with a reason of session expiration. Conditions: The IKEv2 sessions that are terminated must select an IKEv2 policy that has a configured lifetime of 120 seconds. The sessions may not be terminated after failover even if the IKEv2 policy does have a lifetime of 120 seconds, depending on the jitter and the amount of time since the last IKE rekey when the failover occurs.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases