Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
827
Views
0
Helpful
0
Replies

Site-2-Site tunnel goes stale.

JasonBryant1
Level 1
Level 1

‎01-10-2014 02:02 PM

**Problem**

I have a Main corp location with IPsec tunnels out to a few small office. The site to site tunnel between main location and remote site generally do not have issues. The issues is the IPsec connections between the each remote sites. The tunnel after no traffic has passed for a while drops. Soon as I ping across the tunnels it comes quickly but the problem is we have about 2 or 3 phones at each site. The PBX hands the calls off to the individual phones but since it has been a while since the traffic has went across the tunnel the phones drops the call.

I need a way to keep the tunnels up all the time.

**Action Taken**

I tried increasing Ike key renewal times.

Change tunnel time out to unlimited.

I read where someone was trying to use SLA to send traffic across the tunnel to keep connectivity active.

**Is this possible on ASA5505**?

I just need a way to keep the tunnels up at each remote site.

Topology and vpn configuration attached.

Labels:
Preview file
31 KB
15373725-site-to-site.txt.zip
0 Helpful
0 Replies 0
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents