Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
393
Views
0
Helpful
2
Replies

VPN Site-To-Site Tunnel Drop

pshelfo1
Level 1
Level 1

‎06-04-2004 06:25 AM - edited ‎02-21-2020 01:11 PM

I recently changed are two remote office site-to-site tunnels from a PIX to PIX connection to a VPN3015 to a PIX setup. The PIXs were upgraded to version 6.3.3 and are using stronger encryption.

I both cases for some reason the tunnel decides to randomly disconnect. I can't necessary relate it to any particular instance but I know it does not occur on nights or weekends (bandwidth)? The old Pix to Pix tunnel worked fine on the same 512 Frame line. I don't know where to start and usually I have to reboot the router in front of the Pix to kick the tunnel back up.

Labels:
0 Helpful
2 Replies 2

ehirsel
Level 6
Level 6

‎06-06-2004 06:41 AM

Are there any routing protocols running on that router? Is that router performing any NAT/PAT of the tunneled traffic?

You state that you are using a 512K frame circuit? One end is on the router in front of the pix - where is the other end terminated? In front of the vpn 3015 unit?

0 Helpful

pshelfo1
Level 1
Level 1
In response to ehirsel

‎06-09-2004 05:11 AM

No I am not running any routing protocols like RIP, OSPF or BGP.

The router in front of the PIX does not perform NAT/PAT. However the firewall that is part of the tunnel does perform NAT/PAT but not for the tunnel traffic.

The other end of the tunnel terminates at our border router. VPN traffic is then routed directly to a VPN 3015. Incoming VPN traffic does not hit our corporate firewall.

0 Helpful
Customers Also Viewed These Support Documents