- Cisco Community
- Technology and Support
- Networking
- Switching
- Re: HELP!! 15 minute clock over and over!
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
HELP!! 15 minute clock over and over!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-10-2011 06:35 PM - edited 03-06-2019 03:29 PM
Hi,
We have something really strange going on. We have a Cisco 3845 router that is hooked up for a VPN connection back to our office. Right now, it is configured for static IP from the cable modem. The VPN will stay up for exactly 15 minutes, and then it gets disconnected. It will only re-connect if the physical cable is un-plugged then plugged back in. If the cable is disconnected for 10 minutes, after the origional disconnect, it will only last 5 more minutes. There seems to be a unlimted 15 minute clock that keeps rolling over and disconnecting us. We ruled out the cable modem after hours of troubleshooting. Any help or further troubleshooting ideas would be appreciated!!
~Amy
- Labels:
-
Other Switching
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-10-2011 11:13 PM
Sounds something like a timer which is on 900 seconds. Can you please share us your configuration
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-11-2011 06:40 AM
=~=~=~=~=~=~=~=~=~=~=~= PuTTY log 2011.02.10 16:22:27 =~=~=~=~=~=~=~=~=~=~=~=
=~=~=~=~=~=~=~=~=~=~=~= PuTTY log 2011.02.10 16:23:08 =~=~=~=~=~=~=~=~=~=~=~=
xx-RTR#sho run
Building configuration...
Current configuration : 14025 bytes
!
! Last configuration change at 16:07:09 EST Thu Feb 10 2011 by RemoteOps
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname xx0-RTR
!
boot-start-marker
boot system flash:c3845-advipservicesk9-mz.124-20.T2.bin
boot-end-marker
!
card type t1 0 0
logging message-counter syslog
logging buffered 5000
enable secret 5 $1$78Aa$rikkw99kyTwMvdcvVZH6q/
!
aaa new-model
!
--More-- !
aaa authentication login default group tacacs+ local
aaa authentication login local_user local
aaa authorization exec default group tacacs+ local
aaa authorization commands 0 default group tacacs+ local
aaa authorization commands 1 default group tacacs+ local
aaa authorization commands 15 default group tacacs+ local
aaa accounting exec default start-stop group tacacs+
aaa accounting commands 0 default start-stop group tacacs+
aaa accounting commands 1 default start-stop group tacacs+
aaa accounting commands 2 default start-stop group tacacs+
aaa accounting commands 3 default start-stop group tacacs+
aaa accounting commands 4 default start-stop group tacacs+
aaa accounting commands 5 default start-stop group tacacs+
aaa accounting commands 6 default start-stop group tacacs+
aaa accounting commands 7 default start-stop group tacacs+
aaa accounting commands 8 default start-stop group tacacs+
aaa accounting commands 9 default start-stop group tacacs+
aaa accounting commands 10 default start-stop group tacacs+
aaa accounting commands 11 default start-stop group tacacs+
aaa accounting commands 12 default start-stop group tacacs+
aaa accounting commands 13 default start-stop group tacacs+
aaa accounting commands 14 default start-stop group tacacs+
--More-- aaa accounting commands 15 default start-stop group tacacs+
aaa accounting system default start-stop group tacacs+
!
!
aaa session-id common
clock timezone EST -5
clock summer-time EDT recurring
no network-clock-participate wic 0
!
!
!
dot11 syslog
ip source-route
!
!
ip cef
!
!
no ip domain lookup
ip domain name corp.pvt
ip name-server xx.xx.xx.xx
ip name-server xx.xx.xx.xx
ip multicast-routing
--More-- l2tp-class l2tp-defaults
retransmit initial retries 30
cookie size 8
!
l2tp-class class1
authentication
password 7 060506324F41
!
!
no ipv6 cef
multilink bundle-name authenticated
!
!
!
voice-card 0
no dspfarm
!
!
!
!
!
!
!
--More-- !
!
!
!
!
!
!
!
!
!
!
!
!
crypto isakmp policy 1
hash md5
authentication pre-share
crypto isakmp key r3t5451dnp53 address 0.0.0.0 0.0.0.0
crypto isakmp invalid-spi-recovery
!
--More-- !
crypto ipsec transform-set ESPN_L2L esp-3des esp-md5-hmac
!
crypto map xxxNL2L 140 ipsec-isakmp
description VPN Viz Graphics Truck
set peer xx.xx.xx.xx
set transform-set xx_L2L
match address 100
!
archive
log config
hidekeys
!
!
controller T1 0/0/0
shutdown
framing esf
linecode b8zs
cablelength long 0db
channel-group 0 timeslots 1-2
!
controller T1 0/0/1
shutdown
--More-- framing esf
linecode b8zs
cablelength long 0db
channel-group 0 timeslots 1-2
!
!
class-map match-all viz_sync
match access-group name viz_sync
class-map match-all ICA
match access-group name ICA_traffic
class-map match-all comms_traffic
match access-group name comms_traffic
class-map match-all ICA_traffic
match access-group name ICA_traffic
!
!
policy-map us_open_policy
class viz_sync
police rate percent 33 burst 400 ms peak-rate percent 36 peak-burst 500 ms
conform-action transmit
exceed-action drop
violate-action drop
class ICA
--More-- bandwidth percent 25
class class-default
fair-queue
policy-map ICA_policy
class ICA_traffic
priority percent 60
class class-default
fair-queue
policy-map comms_policy
class comms_traffic
priority 300
class ICA_traffic
bandwidth percent 40
class class-default
fair-queue
policy-map test_policy
class viz_sync
police rate percent 33 burst 400 ms peak-rate percent 36 peak-burst 500 ms
conform-action transmit
exceed-action drop
violate-action drop
bandwidth percent 30
class ICA
--More-- bandwidth percent 25
class class-default
fair-queue
!
pseudowire-class ether-pw
! Incomplete config [Unconfigured ip local interface]
encapsulation l2tpv3
protocol none
ip local interface Loopback1
!
pseudowire-class vlan-xconnect
! Incomplete config [Unconfigured ip local interface]
encapsulation l2tpv3
protocol l2tpv3 class1
ip local interface Loopback1
!
!
!
!
!
interface Loopback0
description L2TP endpoint
ip address xx.xx.xx.xx 255.255.255.255
--More-- !
interface Loopback1
no ip address
!
interface Tunnel1
description GRE Travel Kit
ip address xx.xx.xx.xx 255.255.255.252
ip ospf network point-to-point
ip ospf cost 10
ip ospf hello-interval 5
ip ospf mtu-ignore
tunnel source GigabitEthernet0/1
tunnel destination xx.xx.xx.xx
!
interface GigabitEthernet0/0
description BAD_PORT
no ip address
shutdown
duplex auto
speed auto
media-type rj45
no cdp enable
!
--More-- interface GigabitEthernet0/1
description Security DSL Backup
ip address xx.xx.xx.xx 255.255.255.248
no ip redirects
duplex auto
speed auto
media-type rj45
no cdp enable
crypto map ESPNL2L
!
interface GigabitEthernet0/1.1
encapsulation dot1Q 641
shutdown
no cdp enable
xconnect xx.xx.xx.xx pw-class vlan-xconnect
! Incomplete or Invalid Xconnect config
!
interface GigabitEthernet0/1.2
encapsulation dot1Q 661
shutdown
no cdp enable
xconnect xx.xx.xx.xx 124 pw-class vlan-xconnect
! Incomplete or Invalid Xconnect config
--More-- !
interface Serial0/0/0:0
bandwidth 1572
ip address xx.xx.xx.xx 255.255.255.248
ip pim sparse-mode
ip ospf network point-to-point
shutdown
!
interface Serial0/0/1:0
no ip address
!
interface Integrated-Service-Engine1/0
no ip address
shutdown
no keepalive
!
interface GigabitEthernet2/0
description Intergrated Switch BackPlane Connection
no ip address
!
interface GigabitEthernet2/0.1
description User VLAN195 LAN Segment
encapsulation dot1Q 195 native
--More-- ip address xx.xx.xx.xx 255.255.255.0
ip helper-address xx.xx.233.255
ip helper-address xx.xx.241.255
ip directed-broadcast
!
interface GigabitEthernet2/0.2
description Server VLAN202 LAN Segment
encapsulation dot1Q 202
ip address xx.xx.xx.xx 255.255.255.240
ip helper-address xx.xx.xx.xx
ip helper-address xx.xx.xx.xx
ip directed-broadcast
shutdown
!
interface GigabitEthernet2/0.3
description Server VLAN10 VIZ Segment
encapsulation dot1Q 10
ip address xx.xx.xx.xx 255.255.255.240
ip helper-address xx.xx.xx.xx
ip helper-address xx.xx.xx.xx
ip directed-broadcast
!
interface GigabitEthernet2/0.4
--More-- description L2TPtoBristol (Comms Link)
encapsulation dot1Q 75
shutdown
no cdp enable
xconnect xx.xx.xx.xx pw-class vlan-xconnect
! Incomplete or Invalid Xconnect config
!
interface Hssi3/0
no ip address
shutdown
serial restart-delay 0
!
interface Async1
ip unnumbered GigabitEthernet2/0.1
encapsulation slip
ip tcp header-compression passive
async mode dedicated
peer default ip address xx.xx.xx.xx
!
router ospf xx.xx
router-id xx.xx.1.22
log-adjacency-changes
passive-interface GigabitEthernet2/0
--More-- network xx.xx.xx.xx0.0.0.0 area 58
network xx.xx.xx.xx0.0.0.0 area 58
network xx.xx.xx.xx0.0.0.3 area 100
network xx.xx.xx.xx0.0.0.3 area 100
network xx.xx.xx.xx0.0.0.255 area 58
network xx.xx.xx.xx0.0.0.15 area 58
network xx.xx.xx.xxxx.xx.xx.xx0.0.0.15 area 58
network xx.xx.xx.xx 0.0.0.15 area 58
network xx.xx.xx.xx0.0.0.3 area 58
network xx.xx.xx.xx0.0.0.3 area 58
!
ip forward-protocol nd
ip route xx.xx.xx.xx255.255.255.255 Async1
ip route xx.xx.xx.xx255.255.255.255 71.43.55.65
no ip http server
ip http authentication local
no ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
!
!
ip pim rp-address xx.xx.xx.xx
!
ip access-list extended ICA_traffic
--More-- permit tcp any any eq 1494
permit tcp any eq 1494 any
ip access-list extended VPN_In
permit ip host xx.xx.234.2.44 any
deny ip any any log
ip access-list extended comms_traffic
permit 115 host xx.xx.xx.xxhost xx.xx.xx.xx
permit 115 host xx.xx.xx.xxhost xx.xx.xx.xx
ip access-list extended viz-servers
permit ip host xx.xx.xx.xxhost xx.xx.xx.xx
permit ip host xx.xx.xx.xxhost xx.xx.xx.xx
ip access-list extended viz_sync
permit ip host xx.xx.xx.xxhost xx.xx.xx.xx
permit ip host xx.xx.xx.xxhost xx.xx.xx.xx
!
!
map-class frame-relay 3072K_us_open
frame-relay cir 3072000
frame-relay mincir 3072000
service-policy output us_open_policy
!
map-class frame-relay 3072k
frame-relay cir 3072000
--More-- frame-relay mincir 3072000
service-policy output ICA_policy
!
map-class frame-relay 4500k
frame-relay cir 4500000
frame-relay mincir 4500000
service-policy output ICA_policy
!
map-class frame-relay 6000K_ICA
frame-relay cir 6000000
frame-relay mincir 6000000
service-policy output ICA_policy
!
map-class frame-relay 1536K
frame-relay cir 1536000
frame-relay mincir 1536000
service-policy output ICA_policy
!
map-class frame-relay 6000K_Comms
frame-relay cir 6000000
frame-relay mincir 6000000
service-policy output comms_policy
logging facility local0
--More-- logging xx.xx.xx.xx
access-list 2 permit xx.xx.xx.xx
access-list 2 permit xx.xx.xx.xx
access-list 2 permit xx.xx.xx.xx
access-list 2 permit xx.xx.xx.xx
access-list 2 permit xx.xx.xx.xx
access-list 2 permit xx.xx.xx.xx0.0.1.255
access-list 100 permit gre host xx.xx.xx.xx host xx.xx.xx.xx
snmp-server community kxdi#1 RO 2
snmp-server location xx
snmp-server contact Jxx
snmp-server chassis-id ExdSPxx
snmp-server enable traps snmp authentication linkdown linkup coldstart
snmp-server enable traps vrrp
snmp-server enable traps ds1
snmp-server enable traps tty
snmp-server enable traps eigrp
snmp-server enable traps xgcp
snmp-server enable traps flash insertion
snmp-server enable traps flash removal
snmp-server enable traps ds3
snmp-server enable traps envmon
snmp-server enable traps icsudsu
--More-- snmp-server enable traps isdn call-information
snmp-server enable traps isdn layer2
snmp-server enable traps isdn chan-not-avail
snmp-server enable traps isdn ietf
snmp-server enable traps ds0-busyout
snmp-server enable traps ds1-loopback
snmp-server enable traps atm subif
snmp-server enable traps bgp
snmp-server enable traps bulkstat collection transfer
snmp-server enable traps memory bufferpeak
snmp-server enable traps cnpd
snmp-server enable traps config-copy
snmp-server enable traps config
snmp-server enable traps dial
snmp-server enable traps dsp card-status
snmp-server enable traps dsp oper-state
snmp-server enable traps entity
snmp-server enable traps fru-ctrl
snmp-server enable traps event-manager
snmp-server enable traps frame-relay multilink bundle-mismatch
snmp-server enable traps frame-relay
snmp-server enable traps frame-relay subif
snmp-server enable traps hsrp
--More-- snmp-server enable traps ipmulticast
snmp-server enable traps mpls ldp
snmp-server enable traps mpls traffic-eng
snmp-server enable traps msdp
snmp-server enable traps mvpn
snmp-server enable traps ospf state-change
snmp-server enable traps ospf errors
snmp-server enable traps ospf retransmit
snmp-server enable traps ospf lsa
snmp-server enable traps ospf cisco-specific state-change nssa-trans-change
snmp-server enable traps ospf cisco-specific state-change shamlink interface
snmp-server enable traps ospf cisco-specific errors
snmp-server enable traps ospf cisco-specific retransmit
snmp-server enable traps ospf cisco-specific lsa
snmp-server enable traps pim neighbor-change rp-mapping-change
snmp-server enable traps pppoe
snmp-server enable traps cpu threshold
snmp-server enable traps rsvp
snmp-server enable traps ipsla
snmp-server enable traps syslog
snmp-server enable traps l2tun session
snmp-server enable traps vtp
snmp-server enable traps firewall serverstatus
--More-- snmp-server enable traps ipmobile
snmp-server enable traps rf
snmp-server enable traps isakmp policy add
snmp-server enable traps isakmp policy delete
snmp-server enable traps isakmp tunnel start
snmp-server enable traps isakmp tunnel stop
snmp-server enable traps ipsec cryptomap add
snmp-server enable traps ipsec cryptomap delete
snmp-server enable traps ipsec cryptomap attach
snmp-server enable traps ipsec cryptomap detach
snmp-server enable traps ipsec tunnel start
snmp-server enable traps ipsec tunnel stop
snmp-server enable traps ipsec too-many-sas
snmp-server enable traps ccme
snmp-server enable traps srst
snmp-server enable traps mpls vpn
snmp-server enable traps voice
snmp-server enable traps dnis
snmp-server host xx.xx.4.242 kxdi#1
snmp-server host xx.xx.4.254 kxdi#1
!
!
!
--More-- !
!
!
tacacs-server host xx.xx.28.10
tacacs-server host xx.xx.28.11
tacacs-server directed-request
tacacs-server key 7 040F5B5658766F471A1A0A
!
control-plane
!
!
!
!
!
!
dial-peer cor custom
!
!
!
!
!
banner motd ^CCC
WARNING!: This device is being monitored and all unauthorized access attempts
--More-- will be reported. Access is intended for ESPN Data Communications personnel
only. Violators will be prosecuted under applicable law.
^C
!
line con 0
exec-timeout 100 0
password 7 01180F13525A545C
line aux 0
exec-timeout 0 0
modem always-on
transport preferred telnet
transport input all
transport output all
stopbits 2
speed 38400
line 66
no activation-character
no exec
transport preferred none
transport input all
transport output pad telnet rlogin lapb-ta mop udptn v120 ssh
line 130
no activation-character
--More-- no exec
transport preferred none
transport input all
transport output pad telnet rlogin lapb-ta mop udptn v120 ssh
line vty 0 4
privilege level 15
password 7 082A455900485744
transport input telnet ssh
line vty 5 15
privilege level 15
transport input telnet ssh
!
scheduler allocate 20000 1000
ntp server xx.xx.xx.xx.xx
ntp server xx.xx.28.234
end
xx-RTR#
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-11-2011 12:29 PM
Are you able to see the config on the other side of the tunnel...are you sure it is not terminating the session after 900 seconds?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
