04-22-2005 02:43 AM
Does anyone try to configure DPD without problem??
Is that the remote peer need to support the same feature and needs to enable it????
I have open the debug command but nothing to see regarding the DPD message on the DPD enabled router.
Please advise the problem!!
04-22-2005 03:44 AM
This link may be of use in configuring DPD.
http://www.cisco.com/en/US/products/sw/iosswrel/ps5207/products_feature_guide09186a00801ee19a.html
According to the link, both ends need to enable the same protocol.
Note that the isakmp keepalive is not the same as DPD, but if your router's IOS image can perform both, then configure both - which protocol will be used depends upon which protocol the remote peer supports.
Let me know if you need more help.
04-22-2005 10:36 AM
Because the remote peer does not support DPD, I just wonder can I get any hello message on the DPD enabled router using the debug crypto isakmp. According to the link, as least there have some request and response meesage by the debug command.
I have try to use keepalive (not DPD)on both router, I can't verify whether the feature is working or not without the hello message display by the debug command.
In addition, does there any feature that the Cisco can be auto bring up the VPN tunnel without trigger the interest traffic, that means the VPN tunnel is always up. I know that the EZVPN can be done that. But how about standard IPsec ?? From my point of view, I just try DPD to see whether can be done for this issue.
Please try to help me!!
Thanks in advance for your information
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide