04-04-2002 06:52 AM - edited 02-21-2020 11:40 AM
We have a Cisco Pix 515 firewall which we are using for IPSec VPN with client version 3.51. Our users sporadically (increasing frequency) get the message "Remote peer is no longer responding" when they try to connect. When this occurs, they are able to consistenly ping the firewall. If they wait five minutes and try again, they may be successful. There have only been a maximum of around five concurrent tunnels open, so I don't think it's a capacity issue either...
Any help would be greatly appreciated... MIKE
04-04-2002 08:53 AM
do you have a max session set and maybe the customer did a hard disconnect?
04-04-2002 01:42 PM
No, there is no max session set... MIKE
04-04-2002 04:07 PM
Have the users been using the same isp, and if so have they tried to use a different one? You probably
have to enable the logging on the client (set all to high) and then enable the debugs on the PIX, ie
debug crypto isakmp
debug crypto ipsec
to see which phase of the negotiation it is failing.
Normally this is caused by a link issue?
Are you using split tunnelling or tunnel everything?
your configs are right.
04-08-2002 05:32 AM
The users are using different ISPs. We are using split tunelling. Often when this occurs, one person will get the message but others can connect (but no one person fails consistently). The message comes up before the ID/Password dialog. Often if I type the wrong password and try to immediately reconnect, I get this error... MIKE
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide