I have VyOS with DMVPN/IPSec configured (IKEv1). I did configure the dead-peed-detection:
show vpn ipsec ike-group IKE-DMVPN dead-peer-detection { action restart interval 30 timeout 30 } ikev2-reauth no key-exchange ikev1 lifetime 28800 proposal 1 { dh-group 2 encryption 3des hash md5 }
But after I power off the peer router (Cisco) and power on again, my VyOS router is trying to use old SA and as result the tunnel is down. It seems to DPD does not work at all. Is it so?