Hi, we have an issue where a site-to-site VPN had dropped between a satellite office (Cisco 1801 running IOS 12.4(15)T6) and our data centre (Pix 515e running 7.2(2)). This has happened twice since the 1801 was deployed 3 weeks ago, both overnight. Rebooting the 1801 has remedied the issue.
Just to complicate matters, the remote site also needs to talk to another satellite site that is connected to our data centre via an MPLS network. This works fine provided the traffic is initiated from the remote office, however, there have been occasions where this has stopped working also (but remote site can still see the data centre network).
The remote site was deployed just before going on holiday and I've just returned to find out about these issues second hand (thus no diagnostic/troubleshooting done so far, everything is currently working fine). I'm waiting for it to go wrong again before I can analyse further but any help in the meantime would be much appreciated.
if that is not it i have done this on both sides of the vpn, hardcode the following commands on both the side, the asa and vpn client
crypto ipsec security-association lifetime kilobytes 5000000
crypto ipsec security-association lifetime seconds 7200
both commands are the the same on both platforms.