Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
455
Views
0
Helpful
1
Replies

site-to-site IPSEC vpn tunnel drops

brianbono
Level 1
Level 1

‎09-25-2007 06:31 PM - edited ‎03-11-2019 04:16 AM

I have be testing our vpn connection and I have come up with a pattern of when we lose the telnet/ssh connection to our HQ.

It happens between 20 minutes and 25 minutes after the hour. In other words, I lose my connection at:

23:22

00:23

01:23

02:23

03:25

I'm not sure if it has to do with my IKE SA set at 28000...

can anyone please advise why my tunnel keeps on dropping? does it really have to do with the SA?

thanks,

brian

Labels:
0 Helpful
1 Reply 1

vkapoor5
Level 5
Level 5

‎10-04-2007 06:32 AM

If the users are frequently disconnected across the L2L tunnel, the problem can be the lesser lifetime configured in ISAKMP SA.

The default is 86,400 seconds or 24 hours. As a general rule, a shorter lifetime provides more secure ISAKMP negotiations (up to a point), but, with shorter lifetimes, the security appliance sets up future IPSec SAs more quickly.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card