cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

Choose one of the topics below for SD-WAN Resources to help you on your journey with SD-WAN

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC!
We will not comment or assist with your TAC case in these forums.

56
Views
0
Helpful
0
Replies
Highlighted
Beginner

SDWAN / Zscaler / IPSec

Current config: vEdge 100M / Broadband / (2) Zscaler IPSec tunnels

We have (2) two IPSec tunnels to Zscaler (IPSec instead of GRE because we are using DHCP instead of static on the broadband link) for the most part both tunnels stay up but on occasion for no reason that I can tell they both go down and nothing other than rebooting the vEdge will bring them back up. Logs from Zscaler aren't too helpful as they mainly show that the IPSec tunnel is down. Any advice/suggestions/clues where to look? 

 

shut/no shut the physical interface (ge0/4) - no joy

shut/no shut both of the IPSec tunnels - no joy

request ipsec ike-rekey - no joy

request ipsec ipsec-rekey - no joy

 

"show ipec ike sessions state " shows the state of both tunnels as "TERMINATED"

 

CreatePlease to create content
Content for Community-Ad
July's Community Spotlight Awards