We use cookies on our website to ensure we provide you with the best experience on our website. By using our website, you agree to the use of cookies for analytics and personalized content.This website uses cookies. More Information
It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda NextGen Firewall X

Description of IPSEC tunnel termination methods

  • Type: Knowledgebase
  • Date changed: 6 months ago
Solution #00005107
 
Scope:
This solution replies to:
- NG Firewall firmware versions 4.2.x, 5.0.x, 5.2.x
- netfence firmware versions 4.2.x

 
Symptoms:

Two possibilities are offered in the "VPN service" to kill an IPSEC tunnel:   "Terminate Tunnel" and "Hard Kill Tunnel".

When should either of the options be used? 


 

Solution:

Terminate Tunnel:
This method kills Phase2 of the IPSEC tunnel. Phase 2 can be reinitialised immediately as the tunnel partners exchange information with each other.

 

Hard Kill Tunnel:
This method kills Phase 1 of the IPSEC tunnel. As there is no exchange between the tunnel partners Phase 1 can only be re-established if the partner kills his own Phase 1.

 

 

Link to This Page:
https://campus.barracuda.com/solution/50160000000IKYOAA4