07-22-2008 12:03 AM - edited 02-21-2020 03:50 PM
Hi,
we have remote access vpn configured it is working fine from my home & when i connect to vpn from my office it disconnects after 1hr, error is 412 remote peer is no longer responding
FYI: my office fw is Fortigate & remote end is asa 5505, please can someone help me out in this, its very urgent
07-22-2008 12:17 AM
check the settings on the office fw...
It look like you UDP session (IPSec over UDP in your case) has expired.
Also check "crypto isakmp keepalive ..." on the ASA.
07-22-2008 12:26 AM
07-22-2008 04:18 AM
Dear your pfs is disabled in group policies.
please check and type crypt isakmp keepalive as well.
07-22-2008 04:34 AM
can u pls explain or give the link about the use of this commands pfs & keepalive
FYI: we have L2L vpn, it is working no issues
my issue is RA VPN & my client also facing the same issue, as i said earlier from my home it is working no problem, In my office we using fortigate fw whether any changes needs to be done here
07-22-2008 09:36 AM
Gandhi,
With regard to your problem - it seems like after an hour the UDP port gets torn down so your IPSec connection gets disconnected.
If you configure keepalive on the tunnel-group that you are connecting to, this will try to keep up the session using keepalive packets from the server to the client.
If your office firewall blocks those keepalive messages then you have to allow those keepalive messages coming in from the ASA.
http://www.cisco.com/en/US/docs/security/asa/asa81/command/ref/i3.html#wp1824961
Here is a wiki on what PFS is
http://en.wikipedia.org/wiki/Perfect_forward_secrecy
To just read about some explanation on PFS from Cisco's website, please click on the link below.
http://www.cisco.com/en/US/docs/ios/12_1t/12_1t3/feature/guide/dtgroup5.html#wp1018094
Hope this helps.
Thanks
Gilbert
07-23-2008 12:10 AM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide