Router A is a 7204 router B is a 1721. If there is no traffic over the VPN tunnel for more then a couple hours I will not be able to ping the remote router's private interface. The only way to bring up the connecions is to source a ping from the remote routers private interface to the home office routers private interface. For now we keep a steady flow of traffic over the VPN tunnel as a workaround but would like to know root cause. Has anyone else experianced this issue ??
Re: Site to site VPN tunnel will not stay connected
I had a similar issue. I had just set up our peer to peer and in testing the only way I could bing up the tunnel was pinging my internal device from my dmz device. Once up it worked fine. But I couldn't initiate a connection from inside. It turned out to be a firewall issue. I believe it was the AH. Try chaning your transform set on the peer to peer to esp-3des and no AH.
I hope this helps. At least it did in our situation.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...