[c-nsp] ASA: IPSec replay window size change
Artem Viklenko
artem at viklenko.net
Sat May 28 13:25:46 EDT 2016
Hi, All!
Having periodic replay window alerts with some customers,
we desides to increase replay window globally to the max
value of 1024 using the command
crypto ipsec security-association replay window-size 1024
But I can't find info how it is affects existing SAs.
I think that new window size will be applied to new SAs.
But what will happen with exising ones. My main concern:
is it non-dusruptive to apply this change on production
firewall?
Thanks in advance!
--
Regards!
More information about the cisco-nsp
mailing list