I have two ASA5505 and want to setup a site-to-site vpn.
I used the ipsec wizard and the vpn works so far.
The problem is the remote side where the asa is behind a firewall of my isp. The incoming ports are completly closed.
Now if the idle time pass by and on the remote side there is no traffic the tunnel disrupts.
I found a workaround by setting the idle-timout to none. But if the tunnel disrupt by other reasons, e.g. ISP disconnects I can't rebuild it from the server side.
Is there any command to send a keepalive signal or something?