Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Tunnel drops but never recovers

Hi,

I have a problem related to a hub and spoke DMVPN over ADSL setup: the spokes are using ADSL lines and the hub is using a fiber link (higher bw to accomodate the 20+ tunnels to the spokes)

The problem we are seeing is that when the ADSL line drops (even by simply pulling the cable), the tunnel drops. After restoring ADSL - the Internet connectivity is restored on the spoke. However - the tunnel cannot pass any traffic from one end to the other. The problem persists for days if not engaged.

The only thing that appears to fix it is reloading the central router.

Reloading the ADSL one does not.

Both the hub and the spoke are currently using Cisco 1812 hardware.

I suppose this could be related to IPSEC / ISAKMP timers but I am not that good with it so any suggestion would be very much appreciated.

Thank You,

Dragos

2 REPLIES
Silver

Re: Tunnel drops but never recovers

you may need to set isakmp keepalives on the Routers.

You can do that by adding the following command on both the Routers in the global configuration mode:

crypto isakmp keepalive 15 5

This command would allow the Routers to send dead peer detection (DPD) messages to each other.

New Member

Re: Tunnel drops but never recovers

Great - I will try that.

Thanks a Lot !

BR,

Dragos

105
Views
0
Helpful
2
Replies
CreatePlease login to create content