Cisco Community
English
Register
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

Welcome to the Cisco Small Business Community

Have a question? Click on a topic board below to get started in the community.
Get the latest news in this issue of the Cisco Small Business Monthly Newsletter

8592
Views
5
Helpful
7
Replies
Highlighted
Scooterboy56
Beginner
Beginner
‎06-22-2015 08:46 AM
‎06-22-2015 08:46 AM

VPN disconnects every hour

We connect to a Cisco ASA 5540 via VPN. Every hour on the hour, the VPN is closed and a few seconds later renewed. I suspect there's an IP lease setting somewhere. Any ideas?

Labels:
0 Helpful
Reply
7 REPLIES 7
Highlighted
Joshua Beatty
Beginner
Beginner
‎06-22-2015 01:28 PM
‎06-22-2015 01:28 PM

I would do some logging on both ends of the VPN to see which device is dropping the tunnel.

Do both ends of the tunnel have static IP addresses? If an IP changed at one end the tunnel would drop for a lot longer than a few seconds.

0 Helpful
Reply
Highlighted
Scooterboy56
Beginner
Beginner
In response to Joshua Beatty
‎06-23-2015 12:17 AM
‎06-23-2015 12:17 AM

I found an existing problem on Cisco. CheckPoint and Cisco don't coexist properly. We're looking into the suggested solution. We ran DHCP then tried static, but the problem remained

0 Helpful
Reply
Highlighted
Jerry Paul
Beginner
Beginner
‎06-23-2015 04:35 AM
‎06-23-2015 04:35 AM

This is an issue of DHCP.

Re-configure DHCP and stable IP address.

 

 

 

Jerry Paul

www.thenetworkhardware.com

0 Helpful
Reply
Highlighted
Scooterboy56
Beginner
Beginner
In response to Jerry Paul
‎06-23-2015 05:24 AM
‎06-23-2015 05:24 AM

No, not DHCP. We configured static IP's and problem continued.

0 Helpful
Reply
Highlighted
Jerry Paul
Beginner
Beginner
In response to Scooterboy56
‎06-24-2015 07:53 AM
‎06-24-2015 07:53 AM

Let me know about the IP's you are using for VPNs, Loopback or real IPs?

Use dynamic protocol for ip addressing, do not know use static IPs.

 

 

Jerry Paul

www.thenetworkhardware.com

0 Helpful
Reply
Highlighted
Aref Alsouqi
VIP Rising star VIP Rising star
VIP Rising star
‎06-23-2015 08:59 PM
‎06-23-2015 08:59 PM

Hi,

Are the ipsec lifetimes are set the same on both ends? The Cisco default ipsec lifetime is 3600 seconds which is one hour, once the lifetime expires the tunnel will be disconnected and reinitiate it again. You can change the ipsec lifetime by using the command "crypto ipsec security-association lifetime seconds ...".

Regards | Aref.

Reply
Highlighted
shine pothen
Participant
Participant
‎06-24-2015 12:47 AM
‎06-24-2015 12:47 AM

what arefalso said coould be the reason for the vpn to get disconnect.

to further investigate paste your configuration. 

 

0 Helpful
Reply
Latest Contents
Special offer - Cisco Designed Secure Remote Work
Created by Kelli Glass on 02-18-2021 10:22 AM
0
0
0
0
Cisco Designed Secure Remote Work helps you work more productively and securely whatever your location. Worry less and work smarter with enterprise-grade, cloud-based collaboration and security together in one package that's easy to purchase, deploy,... view more
Small business resilience and recovery roundtable
Created by Kelli Glass on 01-28-2021 02:24 PM
0
0
0
0
On Tuesday, February 2nd, you can join a great discussion with an industry analyst, Will Townsend, our partner- Port53,  and our customer -Cheetah Technologies. We’re helping small businesses assess where they are on their digital journey and wh... view more
Let's talk about small business resilience and recovery
Created by Kelli Glass on 01-28-2021 02:18 PM
0
0
0
0
On Tuesday, February 2nd, you can join a great discussion with an industry analyst, Will Townsend, our partner- Port53,  and our customer -Cheetah Technologies. We’re helping small businesses assess where they are on their digital journey and where t... view more
#CiscoChat Live: Small businesses deserve big security prote...
Created by Kelli Glass on 01-19-2021 05:22 PM
0
0
0
0
Join us live on Thursday, January 21 at 10 am PT (and on demand after) as Kate MacLean, head of product marketing for Cisco Umbrella, moderates a discussion about cybersecurity for small businesses. We’ll talk about the specific cyberthreats facing s... view more
#CiscoChat Live: Small businesses deserve big security prote...
Created by Kelli Glass on 01-19-2021 05:19 PM
2
0
2
0
Join us live on Thursday, January 21 at 10 am PT (and on demand after) as Kate MacLean, head of product marketing for Cisco Umbrella, moderates a discussion about cybersecurity for small businesses. We’ll talk about the specific cyberthreats facing s... view more
This widget could not be displayed.