Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ipsec tunnel intermittent packet loss

Well I hope this saves someone else some time.

If you're able to establish a L2L ipsec tunnel, but lose about 50% of your pings, turn off ip cef! that's probably on the first page of "vpns for beginners", but i didn't find any references to it here.

here's to wasted time...

matt

1 REPLY

Re: ipsec tunnel intermittent packet loss

Hey Matt,

Disabling ip cef works most of the time, however, if you have other services on that router, you cannot always go away from CEF.

Configuration guide for CEF support using IPSEC:

http://www.cisco.com/en/US/docs/ios/security/configuration/guide/sec_cfg_vpn_ipsec.html#wp1047537

As you can see there are a few tricks to overcome this problem, but if you don't use MPLS or some other CEF dependent applications (AutoQoS, Protocol discovery) you can just disable CEF globally.

Please rate if this helped.

Regards,

Daniel

326
Views
0
Helpful
1
Replies
CreatePlease login to create content