Skip to main content
Cisco SD-WAN
Support
Product Documentation
Viptela Documentation

request ipsec ipsec-rekey

request ipsec ipsec-rekey—Force the generation of a new security parameter index (SPI) for an IPsec tunnel that is being used for IKE sessions (on vEdge routers only).

Command Syntax

request ipsec ipsec-rekey interface ipsecnumber vpn vpn-id

Options

Interface Name
ipsecnumber
Name of the IPsec interface on which to force the generation of new keys for an IKE session.
VPN
vpn vpn-id
VPN in which the IPsec interface is located.

Output Fields

None

Example Output

Generate a new SPI for an IKE-enabled IPsec tunnel:

vEdge# show ipsec ike inbound-connections 

SOURCE                                  SOURCE  DEST                                    DEST    NEW     OLD     CIPHER           NEW       OLD       
IP                                      PORT    IP                                      PORT    SPI     SPI     SUITE            KEY HASH  KEY HASH  
-----------------------------------------------------------------------------------------------------------------------------------------------------
10.1.15.15                              4500    10.1.16.16                              4500    263     262     aes256-cbc-sha1  ****2474  ****ea42  

vEdge# request ipsec ipsec-rekey vpn 1 interface ipsec1
vEdge# show ipsec ike inbound-connections
            
SOURCE                                  SOURCE  DEST                                    DEST    NEW     OLD     CIPHER           NEW       OLD       
IP                                      PORT    IP                                      PORT    SPI     SPI     SUITE            KEY HASH  KEY HASH  
-----------------------------------------------------------------------------------------------------------------------------------------------------
10.1.15.15                              4500    10.1.16.16                              4500    265     264     aes256-cbc-sha1  ****6653  ****d581  

Release Information

Command introduced in Viptela Software Release 17.2.

  • Was this article helpful?