871 router as VPN client

Unanswered Question
Jan 9th, 2010
User Badges:

Hi All,

we have 871 as VPN client with 2851 as VPN server. every night I have to type "cryp ipsec client ezvpn xauth" with username and password to activate VPN tunnel. which command make it permanent tunnel without to need type username and password every night?



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Armando Yesua G... Wed, 01/13/2010 - 07:30
User Badges:
  • Cisco Employee,

Hi, as you know EzVPN tunnels are not supposed to be permanent as L2L ones.

The tunnel is going to be dropped depending on the IPSec SA lifetime set on the router. If there is no interesting traffic passing by through the tunnel the SA is renegotiated and the tunnel is dropped.

I would suggested set a continuous ping on the remote location so to the other peer so that the interesting traffic is guarantee to be always passing through and the tunnel SAs can be renegotiated, hope this helps.

Armando Yesua.


This Discussion