I have a VPN network. It consists of 50 BorderManager servers, that
generated a huge (but empty) traffic in network - at level about 40
Traffic analysis revealed that to a large degree it is due to
permanent key
exchanges beetwen servers ("Computed inbound/outbund shared key for
connection ...").
Parameters are set as follows:
IP protocols for Encryption,
Connection Initiation: Both Sides, Full Mesh
Update Internal: 15min, Connect Timeout: 2min, Response Timeout: 5minEnable IP RIP, Response Timeout: 2min, Data Encryption Key Change
1000 packets
What should I change to decrease traffic beetwen servers in
way - no more
then few Kbits.