VPN Tunnel Disconnects after not being used for a while

Unanswered Question
Jul 29th, 2008
User Badges:

I have a site-to-site VPN tunnel. If the tunnel is not used for quite some time, the VPN will not work at the remote site. I have to do a ping from the primary site to the remote site to start the connection. This actually started happening when I upgraded my PIX 515 to an ASA5510. I am connecting to a PIX 501.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
acomiskey Tue, 07/29/2008 - 12:18
User Badges:
  • Green, 3000 points or more

You could run dead peer detection on both devices to keep the tunnel alive.


tunnel-group x.x.x.x ipsec-attributes

isakmp keepalive threshold 30 retry 2


isakmp keepalive 30 2

k.peter Mon, 10/13/2008 - 04:48
User Badges:

Ok. But from the SW version 7.2.x the isakmp keepalive is active by default on ASA devices.

alig.norbert Mon, 10/13/2008 - 11:11
User Badges:


Have you find out some solution?

I'm facing the same problem with ASA Version 8.0.x.


This Discussion