Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2164
Views
0
Helpful
3
Replies

ASA to IOS IPSec persistent connection

jseynaeve
Level 1
Level 1

‎04-11-2011 08:20 AM - edited ‎02-21-2020 05:16 PM

Hello all,

I have created an IPSec VPN between our ASA (5510) and a Cisco Router running IOS.

Only problem i have is that the VPN goes down if there's no interesting traffic from the router and i can't find anything to initiate the VPN Tunnel from the ASA (so we need to wait 'till someone connects on the other side) ...

Is there any way to make this connection persistent, just like an ASA-to-ASA tunnel?

Cheers,

Jan.

Labels:
0 Helpful
3 Replies 3

Collin Clark
VIP Alumni
VIP Alumni

‎04-11-2011 08:25 AM

Sure, you can use keepalives.

http://www.cisco.com/en/US/products/ps6120/products_tech_note09186a00807e0aca.shtml

0 Helpful

jseynaeve
Level 1
Level 1
In response to Collin Clark

‎04-12-2011 01:04 AM

hmm, doesn't look like 'isakmp keepalive 10' is doing the trick.

It says this is proprietary for IOS-to-IOS, should it be working for ASA too?

Jan.

0 Helpful

Collin Clark
VIP Alumni
VIP Alumni
In response to jseynaeve

‎04-12-2011 06:40 AM

There is a command for the ASA too. You really only need it one side, but I always do both ends.

ASA(config)# crypto isakmp keepalive ?


configure mode commands/options:

  <10-3600>  Number of seconds between keepalives (10 - 3600)

0 Helpful
Customers Also Viewed These Support Documents