We have just setup a IPSEC tunnel between 2 locations. The tunnel itself is up and stable but i'm having issues when trying to connect to certain webpages at the other end of the tunnel. It seems as though i need to ping these devices or servers prior to accessing them to wake them up. When i ping across the tunnel i always loose the first ping. I believe it may have something to do with ARP and i found a document that said to disable proxy arp on the outside interface which i have done but i'm still having intermittent issues. Any help would be greatly appreciated.
No i haven't trying adjusting the tcp mss values. I agree i originally thought it was a connectivity issue but the tunnel never drops it's been up for over 10 days. I'm not sure why the tcp mss values would affect ping though.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...