VPN Tunnel Disconnects after not being used for a while

Unanswered Question
Jul 29th, 2008

I have a site-to-site VPN tunnel. If the tunnel is not used for quite some time, the VPN will not work at the remote site. I have to do a ping from the primary site to the remote site to start the connection. This actually started happening when I upgraded my PIX 515 to an ASA5510. I am connecting to a PIX 501.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
acomiskey Tue, 07/29/2008 - 12:18

You could run dead peer detection on both devices to keep the tunnel alive.

ASA

tunnel-group x.x.x.x ipsec-attributes

isakmp keepalive threshold 30 retry 2

PIX

isakmp keepalive 30 2

k.peter Mon, 10/13/2008 - 04:48

Ok. But from the SW version 7.2.x the isakmp keepalive is active by default on ASA devices.

alig.norbert Mon, 10/13/2008 - 11:11

Hi,

Have you find out some solution?

I'm facing the same problem with ASA Version 8.0.x.

Actions

This Discussion